Lucene search

K
ubuntucveUbuntu.comUB:CVE-2011-3947
HistoryMay 13, 2012 - 12:00 a.m.

CVE-2011-3947

2012-05-1300:00:00
ubuntu.com
ubuntu.com
17

EPSS

0.022

Percentile

89.6%

Buffer overflow in mjpegbdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12
and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before
0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers
to cause a denial of service (crash) and possibly execute arbitrary code
via a crafted MJPEG-B file.

Notes

Author Note
mdeslaur ffmpeg-extra in multiverse needs to have matching version libav-extra is built with tarball produced by libav package
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchffmpeg< 4:0.5.9-0ubuntu0.10.04.1UNKNOWN
ubuntuupstreamnoarchffmpeg< 0.5.9UNKNOWN
ubuntuupstreamnoarchffmpeg-extra< anyUNKNOWN
ubuntu11.04noarchlibav< 4:0.6.6-0ubuntu0.11.04.1UNKNOWN
ubuntu11.10noarchlibav< 4:0.7.6-0ubuntu0.11.10.1UNKNOWN
ubuntuupstreamnoarchlibav< 0.6.6,0.7.5,0.8.1UNKNOWN
ubuntuupstreamnoarchlibav-extra< anyUNKNOWN