oss-sec mailing list archives
Re: CVE request: ffmpeg before 0.7.8 and 0.8.7 2 buffer overflows and out-of-bounds read
From: Hanno Böck <hanno () hboeck de>
Date: Thu, 24 Nov 2011 04:20:15 +0100
Am Wed, 23 Nov 2011 13:52:04 -0700 schrieb Kurt Seifried <kseifried () redhat com>:
On 11/23/2011 05:23 AM, Hanno Böck wrote:New ffmpeg releases contain a couple of security fixes: http://secunia.com/advisories/46888/ 1) An error within the QDM2 decoder (libavcodec/qdm2.c) can be exploited to cause a buffer overflow. 2) An integer overflow error within the "vp3_dequant()" function (libavcodec/vp3.c) can be exploited to cause a buffer overflow. 3) Errors within the "av_image_fill_pointers()", the "vp5_parse_coeff()", and the "vp6_parse_coeff()" functions can be exploited to trigger out-of-bounds reads. Please assign CVEs. Maybe someone wants to have a look if other issues in those releases are security relevant: http://git.videolan.org/?p=ffmpeg.git&a=shortlog&h=n0.7.8This would be the original advisory http://ffmpeg.org/#pr7dot8and8dot7 correct?
It is the upstream confirmation - at least it's about the same bugs. -- Hanno Böck mail/jabber: hanno () hboeck de GPG: BBB51E42 http://www.hboeck.de/
Attachment:
signature.asc
Description:
Current thread:
- CVE request: ffmpeg before 0.7.8 and 0.8.7 2 buffer overflows and out-of-bounds read Hanno Böck (Nov 23)
- Re: CVE request: ffmpeg before 0.7.8 and 0.8.7 2 buffer overflows and out-of-bounds read Kurt Seifried (Nov 23)
- Re: CVE request: ffmpeg before 0.7.8 and 0.8.7 2 buffer overflows and out-of-bounds read Hanno Böck (Nov 23)
- Re: CVE request: ffmpeg before 0.7.8 and 0.8.7 2 buffer overflows and out-of-bounds read Kurt Seifried (Nov 25)
- Re: CVE request: ffmpeg before 0.7.8 and 0.8.7 2 buffer overflows and out-of-bounds read Hanno Böck (Nov 23)
- Re: CVE request: ffmpeg before 0.7.8 and 0.8.7 2 buffer overflows and out-of-bounds read Kurt Seifried (Nov 23)