CVE-2017-7208

Priority
Low
Description
The decode_residual function in libavcodec in libav 9.21 allows remote
attackers to cause a denial of service (buffer over-read) or obtain
sensitive information from process memory via a crafted h264 video file.
References
Package
Source: libav (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 LTS (Trusty Tahr):needed
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 18.10 (Cosmic Cuttlefish):DNE
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):released-esm (7:2.8.15-0ubuntu0.16.04.1+esm1)
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 18.10 (Cosmic Cuttlefish):needed
More Information

Updated: 2018-08-27 18:14:26 UTC (commit 7c1d4a1c5058b37c472dee9376cac50704b65a33)