Debian DSA-2624-1 : ffmpeg - several vulnerabilities

Several vulnerabilities have been discovered in FFmpeg, a multimedia player, server and encoder. Multiple input validations in the decoders/demuxers for Shorten, Chinese AVS video, VP5, VP6, AVI, AVS and MPEG-1/2 files could lead to the execution of arbitrary code. Most of these issues were...

[SECURITY] [DSA 2624-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2624-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 16, 2013 http://www.debian.org/security/faq -...

Design/Logic Flaw

Unspecified vulnerability in the decodepic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2777...

CVE-2012-2777

CVE-2012-2777 affects FFmpeg before 0.11 and Libav prior to 0.7.7 (0.7.x) and 0.8.4 (0.8.x). The flaw is in the decode_pic function (libavcodec/cavsdec.c) with an unspecified impact and attack vectors, related to width/height changing in CAVS and distinct from CVE-2012-2784. The provided document...

CVE-2012-2777

Unspecified vulnerability in the decodepic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2784...