Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2009-4637

FFmpeg 0.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a stack-based buffer overflow.

Related bugs and status

CVE-2009-4637 (Candidate) is related to these bugs:

Bug #537297: security backports

		In	Importance	Status
537297	security backports	ffmpeg (Ubuntu)	Medium	Fix Released
537297	security backports	ffmpeg (Debian)	Unknown	Fix Released
537297	security backports	ffmpeg (Ubuntu Intrepid)	Undecided	Invalid
537297	security backports	ffmpeg (Ubuntu Jaunty)	Undecided	Won't Fix
537297	security backports	ffmpeg (Ubuntu Lucid)	Medium	Fix Released
537297	security backports	ffmpeg (Ubuntu Karmic)	Undecided	Won't Fix

See the

CVE page on Mitre.org for more details.

References

MISC: http://scarybeastsecur...
MISC: https://roundup.ffmpeg...
DEBIAN: DSA-2000
BID: 36465
SECUNIA: 36805
SECUNIA: 38643
UBUNTU: USN-931-1
SECUNIA: 39482
VUPEN: ADV-2010-0935