Firefox 50 blocks Ubuntu 12.04 and 14.04 LTS's version of libavcodec
| Affects | Status | Importance | Assigned to | Milestone | ||
|---|---|---|---|---|---|---|
| | libav |
Unknown
|
Unknown
|
|||
| libav (Ubuntu) | ||||||
| | Precise |
Medium
|
Unassigned | |||
| | Trusty |
Medium
|
Unassigned | |||
Bug Description
Whenever it tries to play a video, Firefox 50 displays this message at the top of every page:
"libavcodec may be vulnerable or is not supported, and should be updated to play video"
Firefox refuses any libavcodec version prior to 54.35.1 (unless media.libavcode
https:/
Users should not be subjected to this warning, as it is vague (does not instruct them how to fix it).
Ubuntu 14.04 LTS should ship with an updated version of libavcodec.
DistroRelease: Ubuntu 14.04
Package: firefox 50.0+build2-
Related branches
| Ori Avtalion (salty-horse) wrote : | #1 |
| Launchpad Janitor (janitor) wrote : | #2 |
| Changed in firefox (Ubuntu): | |
| status: | New → Confirmed |
| Changed in libav (Ubuntu): | |
| status: | New → Confirmed |
| description: | updated |
| Mozaic (mozaic) wrote : | #4 |
For information in Firefox 50 release notes:
https:/
"Blocked versions of libavcodec older than 54.35.1"
| flan_suse (flansuse) wrote : | #5 |
I concur. Ubuntu 14.04, which is an LTS release, should update libavcodec to version 54.35.1 or higher.
| tags: | added: regression-update |
| vsespb (vsespb) wrote : | #6 |
Affects Ubuntu 12.04 as well
| tags: | added: precise |
| R.Zimmermann (rainer42) wrote : | #7 |
For me, Firefox (50.0 on Ubuntu 14.04) not only shows the warning, but also seems to prevent embedded .gif/.gifv animations from playing, at least on Reddit and Twitter.
Example: Almost every video on https:/
After clicking the Play button, the video will "load forever" or show a still image.
It worked in previous FF versions, or works when setting media.libavcode
It also works *sometimes* if the URL is pointing directly to the GIF file.
Would appreciate if the fix for 14.04 could get a higher priority.
Allowing "obsolete" codecs to run is an absolutely terrible idea. For those of you on 14.04, I'd recommend updating libav-tools by PPA following this answer: http://
| Woody (wo0dy) wrote : | #9 |
How is this not fixed yet? It appears to affect all 14.04 users of firefox. Thats a lot of people.
| summary: |
- Firefox 50 blocks Ubuntu 14.04 LTS's version of libavcodec + Firefox 50 blocks Ubuntu 12.04 and 14.04 LTS's version of libavcodec |
| Norbert (nrbrtx) wrote : | #10 |
Ubuntu 12.04 LTS is affected too (Firefox 50.0.2).
IMHO it is time to include ESR versions of Firefox to Ubuntu LTS instead of bleeding-edge versions.
For example current Firefox ESR 45.5.1 does not show this error.
| Kenneth Wrede (kennethwrede) wrote : | #11 |
If libavcodec must be blocked if it is vulnerable. Then the latest version seems to be a better choice then ESR. But it must be updated in Ubuntus repos as well. I couldnt find anything related in proposed or backports, just checked! (dec 4)
| Changed in firefox (Ubuntu): | |
| assignee: | nobody → afrugiada (afrugiada) |
| David Henningsson (diwic) wrote : | #12 |
Marking as security; either Firefox is wrong or libavcodec is vulnerable and probably we need security people to look at it to determine which one it is...
| information type: | Public → Public Security |
| Changed in libav (Ubuntu): | |
| status: | Confirmed → Triaged |
| Norbert (nrbrtx) wrote : | #13 |
I found ( http://
sudo add-apt-repository ppa:itachi-
sudo apt-get update
sudo apt-get install libav-tools libavcodec56
Is it possible to make SRU and include it to Precise main repository?
| no longer affects: | firefox |
| Changed in libav (Ubuntu Precise): | |
| status: | New → Confirmed |
| Changed in libav (Ubuntu Trusty): | |
| status: | New → Confirmed |
| Changed in libav (Ubuntu): | |
| status: | Triaged → Invalid |
| Launchpad Janitor (janitor) wrote : | #14 |
This bug was fixed in the package libav - 6:9.20-
---------------
libav (6:9.20-
* SECURITY UPDATE: Updated to 9.20 to fix various crashes with
invalid-free, corrupted double-linked list or out-of-bounds read
(LP: #1643467)
- No CVE number
-- Marc Deslauriers <email address hidden> Wed, 07 Dec 2016 15:36:50 -0500
| Changed in libav (Ubuntu Trusty): | |
| status: | Confirmed → Fix Released |
| Launchpad Janitor (janitor) wrote : | #15 |
Status changed to 'Confirmed' because the bug affects multiple users.
| Changed in firefox (Ubuntu Precise): | |
| status: | New → Confirmed |
| Changed in firefox (Ubuntu Trusty): | |
| status: | New → Confirmed |
| Changed in firefox (Ubuntu Trusty): | |
| status: | Confirmed → Fix Released |
| ghomem (gustavo) wrote : | #17 |
Fix seems be fine on 14.04. After a couple of hours of use I'm experiencing neither warnings nor problems playing videos.
| James Cameron (quozl) wrote : | #18 |
I'm having problems playing videos after this fix. (LP: #1648721)
| Marc Chenier (mchen) wrote : | #19 |
This bug affects me on Precise.
| John Rodriguez (julian52) wrote : | #20 |
The bug also affects me on 12.04. Often get the "libavcodec may be vulnerable or is not supported, and should be updated to play video" error.
Will I have to upgrade to 14.04?
Will the update for 12.04 eventually be available on the standard update package?
| Norbert (nrbrtx) wrote : | #21 |
@julian52
As I already mentioned here (comment 13) and on AskUbuntu ( http://
sudo add-apt-repository ppa:itachi-
sudo apt-get update
sudo apt-get install libav-tools libavcodec56
But this solution is temporary.
We need official stable solution from Canonical for Ubuntu 12.04 LTS Precise Pangolin.
| Changed in firefox (Ubuntu Precise): | |
| assignee: | nobody → louis romano (troubleshooter1961) |
| status: | Confirmed → Fix Released |
| William F Hammond (wfhammond) wrote : | #22 |
Re 12.04 LTS: It doesn't make sense for an LTS user to add a baroque apt repository. Please, could a stable fix be pushed out with regular updates. (It's probably at least 8 months before 12.04 LTS is replaced by what I understand to be its LTS successor, 17.04.1+)
| Seth Arnold (seth-arnold) wrote : | #23 |
William, as far as I know the next LTS is still intended to be 18.04.
Our current LTS releases are 12.04, 14.04, and 16.04.
If you wish to upgrade to 14.04 note that Apache2's authentication and authorization changed drastically. If you wish to upgrade to 16.04 note that php is now version 7, and many applications aren't yet updated for php7. Be sure to check the release notes for details of larger changes: https:/
Thanks
| louis romano (troubleshooter1961) wrote : Re: [Bug 1643467] Re: Firefox 50 blocks Ubuntu 12.04 and 14.04 LTS's version of libavcodec | #24 |
Thanks for all info on this matter......problem seems to be fixed. not getting warning.........
Louis V.Romano Jr.
_______
From: <email address hidden> <email address hidden> on behalf of Seth Arnold <email address hidden>
Sent: Wednesday, December 21, 2016 6:00 PM
To: <email address hidden>
Subject: [Bug 1643467] Re: Firefox 50 blocks Ubuntu 12.04 and 14.04 LTS's version of libavcodec
William, as far as I know the next LTS is still intended to be 18.04.
Our current LTS releases are 12.04, 14.04, and 16.04.
If you wish to upgrade to 14.04 note that Apache2's authentication and
authorization changed drastically. If you wish to upgrade to 16.04 note
that php is now version 7, and many applications aren't yet updated for
php7. Be sure to check the release notes for details of larger changes:
https:/
Releases - Ubuntu Wiki<https:/
wiki.ubuntu.com
The content of these old releases can be accessed at the old Ubuntu releases directory. Management of releases. Support length. Regular releases are ...
Thanks
--
You received this bug notification because you are a bug assignee.
https:/
Bug #1643467 "Firefox 50 blocks Ubuntu 14.04 LTS's version ...<https:/
bugs.launchpad.net
Whenever it tries to play a video, Firefox 50 displays this message at the top of every page: "libavcodec may be vulnerable or is not supported, and should be updated ...
Title:
Firefox 50 blocks Ubuntu 12.04 and 14.04 LTS's version of libavcodec
Status in libav:
Unknown
Status in firefox package in Ubuntu:
Confirmed
Status in libav package in Ubuntu:
Invalid
Status in firefox source package in Precise:
Fix Released
Status in libav source package in Precise:
Confirmed
Status in firefox source package in Trusty:
Fix Released
Status in libav source package in Trusty:
Fix Released
Bug description:
Whenever it tries to play a video, Firefox 50 displays this message at the top of every page:
"libavcodec may be vulnerable or is not supported, and should be updated to play video"
https:/
US/chrome/
Firefox refuses any libavcodec version prior to 54.35.1 (unless
media.
https:/
central/
Users should not be subjected to this warning, as it is vague (does not instruct them how to fix it).
Ubuntu 14.04 LTS should ship with an updated version of libavcodec.
DistroRelease: Ubuntu 14.04
Package: firefox 50.0+build2-
To manage notifications about this bug go to:
https:/
| Norbert (nrbrtx) wrote : | #25 |
Ubuntu 12.04.5 LTS with all updates.
I removed PPA ppa:itachi-
In Firefox I have media.libavcode
Tried to find patch in proposed updates with no luck.
The bug is not fixed!
Please fix it!
Precise is an LTS version, is not it?
@louis romano (troubleshooter
Fixing bugs by commenting is not real bug fixing!
"Talk is cheap. Show me the code." as Linus Torvalds said.
| Changed in firefox (Ubuntu Precise): | |
| assignee: | louis romano (troubleshooter1961) → nobody |
| Marc Chenier (mchen) wrote : | #26 |
I use Ubuntu 12.04.5 LTS fully updated as my usual workstation. I still have the problem. I would really like to have this bug fixed in an official Ubuntu way, something I can get through regular updates.
Thanks
| John Rodriguez (julian52) wrote : | #27 |
I use Ubuntu 12.04. Still have the problem. I have disabled Flash and depend on HTML5.
Can't watch video on mainstream news site. Youtube does work, however.
Please include fix on next update packet.
If I upgrade to 14.04, will problem be fixed?
| paz (mozit) wrote : | #28 |
still a problem with Ubuntu Precise... Didn't use the ppa. just waiting for a fix.
| Shofi Islam (shofi-islam) wrote : | #29 |
Confirm message still present in 12.04
| Norbert (nrbrtx) wrote : | #30 |
Ubuntu 12.04.5 LTS with all updates.
The bug is not fixed!
Please fix it!
You broke normal secure internet surfing. Please provide patch for libav.
Google Chrome is unsupported on Precise, Chromium is old, Opera is proprietary.
Precise is an LTS version, is not it?
| John Rodriguez (julian52) wrote : | #31 |
Have not updated Ubuntu 12.04 since 12-24-16. Has the bug been fixed? If I upgrade to 14.04 will I encounter the same problem?
| Norbert (nrbrtx) wrote : | #32 |
Bug is not fixed in Ubuntu 12.04.5 LTS Precise Pangolin.
Can't use twitter.com, facebook.com, vk.com and other sites.
Still need official fix from Canonical and/or Mozilla.
| Marc Deslauriers (mdeslaur) wrote : | #33 |
For this to be resolved in Ubuntu 12.04 LTS, an appropriate fix needs to be written for libav 0.8. Updating to a newer libav isn't an option as the API has changed and that would break compatibility with all the software using libav in the archive. Once a fix has been written, Mozilla would then need to unblock libav in Firefox.
This is unlikely to happen before 12.04.5 LTS reaches end of life in a few weeks.
I recommend updating to a newer Ubuntu release, such as 14.04 LTS, or preferably 16.04 LTS now if this is an important issue rather than waiting until the end of life of 12.04 LTS in a few weeks.
| Ben (keinspamhier) wrote : | #34 |
Judging from the posts in this bug report, it took 2 weeks and three days to solve this problem for the end-users (for the other releases. Support for precise ends in 16 weeks...
I am using ubuntu 12.04. After the update of firefox I am getting the error message -- ""libavcodec may be vulnerable or is not supported, and should be updated to play video"" .
Any solutions ?
| Changed in firefox (Ubuntu): | |
| status: | Confirmed → Fix Released |
| roger (blueshade44) wrote : | #36 |
I had this problem too. I'm running Lubuntu 12.04. I use plain 12.04 and not LTS because lubuntu 12.04 LTS requires PAE and won't work on my Pentium M Itronix go book 3. I have to keep running Lubuntu 12.04. Anyway the answer for me was to go to the Lubuntu Software center and install Gnome-Media-Player . While installing looking at the "programs to install" lo and behold at the top of the list...Libavcodec53 !!! PROBLEM SOLVED.
roger at blueshade44
| roger (blueshade44) wrote : | #37 |
Oh yeah ...my Lubuntu 12.04 came installed with "Gnome mplayer" but when I installed Gnome-Media-Player my problem "player did not initialize properly" went away and I could pay my wave files on Reverb Nation. I didn't have problems with video or flash or You Tube.
roger at blueshade44
| no longer affects: | firefox (Ubuntu) |
| no longer affects: | firefox (Ubuntu Precise) |
| no longer affects: | firefox (Ubuntu Trusty) |
| no longer affects: | libav (Ubuntu) |
| Changed in libav (Ubuntu Trusty): | |
| importance: | Undecided → Medium |
| Changed in libav (Ubuntu Precise): | |
| importance: | Undecided → Medium |
| Hans Brinker (fcnc) wrote : | #38 |
Thank you very much for your work.
Regards Ferry
Amsterdam
The Netherlands
>
> Op 8 mei 2017 om 0:49 schreef Mathew Hodson <email address hidden>:
>
>
> ** No longer affects: firefox (Ubuntu)
>
> ** No longer affects: firefox (Ubuntu Precise)
>
> ** No longer affects: firefox (Ubuntu Trusty)
>
> ** No longer affects: libav (Ubuntu)
>
> ** Changed in: libav (Ubuntu Trusty)
> Importance: Undecided => Medium
>
> ** Changed in: libav (Ubuntu Precise)
> Importance: Undecided => Medium
>
> --
> You received this bug notification because you are subscribed to a
> duplicate bug report (1646554).
> https:/
>
> Title:
> Firefox 50 blocks Ubuntu 12.04 and 14.04 LTS's version of libavcodec
>
> Status in libav:
> Unknown
> Status in libav source package in Precise:
> Confirmed
> Status in libav source package in Trusty:
> Fix Released
>
> Bug description:
> Whenever it tries to play a video, Firefox 50 displays this message at the
> top of every page:
> "libavcodec may be vulnerable or is not supported, and should be updated
> to play video"
>
> https:/
>
> US/chrome/
>
> Firefox refuses any libavcodec version prior to 54.35.1 (unless
> media.libavcode
>
> https:/
> central/
>
> Users should not be subjected to this warning, as it is vague (does not
> instruct them how to fix it).
> Ubuntu 14.04 LTS should ship with an updated version of libavcodec.
>
> DistroRelease: Ubuntu 14.04
> Package: firefox 50.0+build2-
>
> To manage notifications about this bug go to:
> https:/
>
Status changed to 'Confirmed' because the bug affects multiple users.