Ubuntu
libav-extra package

  1. Bug #911811
  2. Comment #1

Comment 1 for bug 911811

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package libav - 4:0.7.3-0ubuntu0.11.10.1

---------------
libav (4:0.7.3-0ubuntu0.11.10.1) oneiric-security; urgency=low

  * Update to 0.7.3 to fix multiple security issues (LP: #911811):
    - SECURITY UPDATE: denial of service and possible code execution via
      malformed file containing QDM2 stream
      - CVE-2011-4351
    - SECURITY UPDATE: denial of service and possible code execution via
      malformed file containing VP3 stream
      - CVE-2011-4352
    - SECURITY UPDATE: denial of service and possible code execution via
      malformed file containing VP5 or VP6 streams
      - CVE-2011-4353
    - SECURITY UPDATE: denial of service and possible code execution via
      malformed VMD file
      - CVE-2011-4364
    - SECURITY UPDATE: denial of service and possible code execution via
      malformed file containing svq1 stream
      - CVE-2011-4579
 -- Marc Deslauriers <email address hidden> Tue, 03 Jan 2012 15:31:49 -0500