Описание
Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | DNE | |
| gutsy | released | 3:0.cvs20070307-5ubuntu4.2 |
| hardy | released | 3:0.cvs20070307-5ubuntu7.2 |
| intrepid | ignored | end of life, was needed |
| jaunty | not-affected | 3:0.svn20090303-1ubuntu1+unstripped1 |
| karmic | not-affected | 3:0.svn20090303-1ubuntu1+unstripped1 |
| lucid | not-affected | 3:0.svn20090303-1ubuntu1+unstripped1 |
| maverick | not-affected | 3:0.svn20090303-1ubuntu1+unstripped1 |
| natty | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| gutsy | DNE | |
| hardy | DNE | |
| intrepid | released | 3:0.svn20080206-12ubuntu3.1 |
| jaunty | not-affected | 3:0.svn20090303-1ubuntu1 |
| karmic | DNE | |
| lucid | DNE | |
| maverick | DNE | |
| natty | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | uses system ffmpeg |
| gutsy | ignored | end of life, was needs-triage |
| hardy | not-affected | uses system ffmpeg |
| intrepid | ignored | end of life, was needs-triage |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | not-affected | uses system ffmpeg |
| maverick | not-affected | uses system ffmpeg |
| natty | not-affected | uses system ffmpeg |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | code not present |
| devel | not-affected | uses system ffmpeg |
| gutsy | not-affected | uses system ffmpeg |
| hardy | not-affected | uses system ffmpeg |
| intrepid | not-affected | uses system ffmpeg |
| jaunty | not-affected | uses system ffmpeg |
| karmic | not-affected | uses system ffmpeg |
| lucid | not-affected | uses system ffmpeg |
| maverick | not-affected | uses system ffmpeg |
| natty | not-affected | uses system ffmpeg |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | uses system ffmpeg |
| gutsy | ignored | end of life, was needs-triage |
| hardy | not-affected | uses system ffmpeg |
| intrepid | ignored | end of life, was needs-triage |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | not-affected | uses system ffmpeg |
| maverick | not-affected | uses system ffmpeg |
| natty | not-affected | uses system ffmpeg |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | |
| gutsy | ignored | end of life, was needed |
| hardy | released | 2:1.0~rc2-0ubuntu13.2 |
| intrepid | ignored | end of life, was needed |
| jaunty | ignored | end of life |
| karmic | not-affected | |
| lucid | not-affected | |
| maverick | not-affected | |
| natty | not-affected |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | uses system ffmpeg |
| gutsy | ignored | end of life, was needs-triage |
| hardy | not-affected | uses system ffmpeg |
| intrepid | not-affected | uses system ffmpeg) (end of life |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | not-affected | uses system ffmpeg |
| maverick | not-affected | uses system ffmpeg |
| natty | not-affected | uses system ffmpeg |
Показывать по
9.3 Critical
CVSS2
Связанные уязвимости
Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.
Integer signedness error in the fourxm_read_header function in libavfo ...
Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
9.3 Critical
CVSS2