DSA-1781-1 ffmpeg-debian -- several vulnerabilitiesID: oval:org.secpod.oval:def:600344 | Date: (C)2011-05-13 (M)2023-11-09 |
Class: PATCH | Family: unix |
Several vulnerabilities have been discovered in ffmpeg, a multimedia player, server and encoder. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-0385 It was discovered that watching a malformed 4X movie file could lead to the execution of arbitrary code. CVE-2008-3162 It was discovered that using a crafted STR file can lead to the execution of arbitrary code. For the oldstable distribution , these problems have been fixed in version 0.cvs20060823-8+etch1. For the stable distribution , these problems have been fixed in version 0.svn20080206-17+lenny1. For the testing distribution and the unstable distribution , these problems have been fixed in version 0.svn20080206-16. We recommend that you upgrade your ffmpeg-debian packages.
Platform: |
Debian 5.0 |
Debian 4.0 |