Multiple vulnerabilities were found in FFmpeg, a multimedia player,
server and encoder:
For the stable distribution (squeeze), this problem has been fixed in
version 4:0.5.5-1.
For the unstable distribution (sid), this problem has been fixed in
version 4:0.7.2-1 of the libav source package.
Security support for ffmpeg has been discontinued for the oldstable
distribution (lenny) before in DSA 2306.
The current version in oldstable is not supported by upstream anymore
and is affected by several security issues. Backporting fixes for these
and any future issues has become unfeasible and therefore we needed to
drop our security support for the version in oldstable.
We recommend that you upgrade your ffmpeg packages.