* SECURITY UPDATE: unspecified security issue in vp56.c (LP: #1104019)
- debian/patches/CVE-2012-2783.patch: release frames on error in
libavcodec/vp56.c.
- CVE-2012-2783
* SECURITY UPDATE: unspecified security issue in Indeo (LP: #1104019)
- debian/patches/CVE-2012-2791.patch: check that scan pattern is set
before using it in libavcodec/ivi_common.c.
- CVE-2012-2791
* SECURITY UPDATE: double free vulnerability in mpeg_decode_frame
- debian/patches/CVE-2012-2803.patch: do not decode extradata more than
once in libavcodec/mpeg12.c.
- CVE-2012-2803
* SECURITY UPDATE: issue in AAC decoding
- debian/patches/CVE-2012-5144.patch: fix off-by-one in
libavcodec/aacdec.c.
- CVE-2012-5144
-- Marc Deslauriers <email address hidden> Thu, 24 Jan 2013 13:31:43 -0500
This bug was fixed in the package libav - 4:0.7.6- 0ubuntu0. 11.10.3
--------------- 6-0ubuntu0. 11.10.3) oneiric-security; urgency=low
libav (4:0.7.
* SECURITY UPDATE: unspecified security issue in vp56.c (LP: #1104019) patches/ CVE-2012- 2783.patch: release frames on error in c/vp56. c. patches/ CVE-2012- 2791.patch: check that scan pattern is set ivi_common. c. patches/ CVE-2012- 2803.patch: do not decode extradata more than mpeg12. c. patches/ CVE-2012- 5144.patch: fix off-by-one in c/aacdec. c.
- debian/
libavcode
- CVE-2012-2783
* SECURITY UPDATE: unspecified security issue in Indeo (LP: #1104019)
- debian/
before using it in libavcodec/
- CVE-2012-2791
* SECURITY UPDATE: double free vulnerability in mpeg_decode_frame
- debian/
once in libavcodec/
- CVE-2012-2803
* SECURITY UPDATE: issue in AAC decoding
- debian/
libavcode
- CVE-2012-5144
-- Marc Deslauriers <email address hidden> Thu, 24 Jan 2013 13:31:43 -0500