Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-0385HistoryFeb 02, 2009 - 7:30 p.m.
CVE-2009-0385
2009-02-0219:30:00
Debian Security Bug Tracker
security-tracker.debian.org
7
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.495 Medium
EPSS
Percentile
97.5%
Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | ffmpeg | <Β 0.svn20080206-16 | ffmpeg_0.svn20080206-16_all.deb |
| Debian | 11 | all | ffmpeg | <Β 0.svn20080206-16 | ffmpeg_0.svn20080206-16_all.deb |
| Debian | 10 | all | ffmpeg | <Β 0.svn20080206-16 | ffmpeg_0.svn20080206-16_all.deb |
| Debian | 999 | all | ffmpeg | <Β 0.svn20080206-16 | ffmpeg_0.svn20080206-16_all.deb |
| Debian | 13 | all | ffmpeg | <Β 0.svn20080206-16 | ffmpeg_0.svn20080206-16_all.deb |
| Debian | 12 | all | mplayer | <Β 1.0~rc2-14 | mplayer_1.0~rc2-14_all.deb |
| Debian | 11 | all | mplayer | <Β 1.0~rc2-14 | mplayer_1.0~rc2-14_all.deb |
| Debian | 10 | all | mplayer | <Β 1.0~rc2-14 | mplayer_1.0~rc2-14_all.deb |
| Debian | 999 | all | mplayer | <Β 1.0~rc2-14 | mplayer_1.0~rc2-14_all.deb |
| Debian | 13 | all | mplayer | <Β 1.0~rc2-14 | mplayer_1.0~rc2-14_all.deb |
Related
prion
prion
Integer overflow
2009-02-02 19:30:00
Integer overflow
2009-02-23 15:30:00
nessus
nessus
FreeBSD : ffmpeg -- 4xm processing memory corruption vulnerability (6733e1bf-125f-11de-a964-0030843d3802)
2009-03-17 00:00:00
Slackware 12.0 / 12.1 / 12.2 / current : xine-lib (SSA:2009-098-03)
2009-04-08 00:00:00
Fedora 10 : xine-lib-1.1.16.3-1.fc10 (2009-3433)
2009-04-23 00:00:00
openvas
openvas
Slackware Advisory SSA:2009-098-03 xine-lib
2012-09-11 00:00:00
Slackware Advisory SSA:2009-098-03 xine-lib
2012-09-11 00:00:00
FreeBSD Ports: ffmpeg
2009-03-20 00:00:00
seebug
seebug
FFmpeg 4xmζ仢解ζε
εη ΄εζΌζ΄
2009-02-19 00:00:00
slackware
slackware
xine-lib
2009-04-07 23:31:21
checkpoint_advisories
checkpoint_advisories
FFmpeg 4xm Processing Memory Corruption (CVE-2009-0385)
2009-11-03 00:00:00
ubuntucve
ubuntucve
CVE-2009-0385
2009-02-02 00:00:00
CVE-2009-0698
2009-02-23 00:00:00
freebsd
freebsd
ffmpeg -- 4xm processing memory corruption vulnerability
2009-01-28 00:00:00
libxine -- multiple vulnerabilities
2009-04-04 00:00:00
cve
cve
CVE-2009-0385
2009-02-02 19:30:00
CVE-2009-0698
2009-02-23 15:30:00
debian
debian
[SECURITY] [DSA 1782-1] New mplayer packages fix arbitrary code execution
2009-04-29 07:01:08
fedora
fedora
[SECURITY] Fedora 10 Update: xine-lib-1.1.16.3-1.fc10
2009-04-09 16:08:28
[SECURITY] Fedora 9 Update: xine-lib-1.1.16.3-1.fc9
2009-04-09 16:07:39
osv
osv
ffmpeg ffmpeg-debian - arbitrary code execution
2009-04-29 00:00:00
mplayer - arbitrary code execution
2009-04-29 00:00:00
debiancve
debiancve
CVE-2009-0698
2009-02-23 15:30:00
ubuntu
ubuntu
FFmpeg vulnerabilities
2009-03-16 00:00:00
gentoo
gentoo
FFmpeg: Multiple vulnerabilities
2009-03-19 00:00:00
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.495 Medium
EPSS
Percentile
97.5%
Related for DEBIANCVE:CVE-2009-0385