[ubuntu/natty-security] libav 4:0.6.2-1ubuntu1.1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Mon Sep 19 18:04:17 UTC 2011
libav (4:0.6.2-1ubuntu1.1) natty-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via
malformed OGG file
- debian/patches/CVE-2011-1196.patch: revalidate index when necessary
in libavformat/oggdec.c.
- CVE-2011-1196
* SECURITY UPDATE: denial of service and possible code execution via
malformed AMV file
- debian/patches/CVE-2011-1931.patch: don't change flags in
libavcodec/sp5xdec.c.
- CVE-2011-1931
* SECURITY UPDATE: arbitrary code execution via malformed CAVS file
- debian/patches/CVE-2011-3362.patch: validate values in
libavcodec/cavsdec.c.
- CVE-2011-3362
Date: Fri, 16 Sep 2011 09:06:48 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/libav/4:0.6.2-1ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Fri, 16 Sep 2011 09:06:48 -0400
Source: libav
Binary: ffmpeg ffmpeg-dbg libav-dbg libav-source ffmpeg-doc libav-doc libavutil50 libavcodec52 libavdevice52 libavformat52 libavfilter1 libpostproc51 libswscale0 libavutil-dev libavcodec-dev libavdevice-dev libavformat-dev libavfilter-dev libpostproc-dev libswscale-dev
Architecture: source
Version: 4:0.6.2-1ubuntu1.1
Distribution: natty-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
ffmpeg - Multimedia player, server, encoder and transcoder
ffmpeg-dbg - Debug symbols for Libav related packages
ffmpeg-doc - Documentation of the Libav API (transitional package)
libav-dbg - Debug symbols for Libav related packages
libav-doc - Documentation of the Libav API
libav-source - Patched Libav sources
libavcodec-dev - Development files for libavcodec
libavcodec52 - Libav codec library
libavdevice-dev - Development files for libavdevice
libavdevice52 - Libav device handling library
libavfilter-dev - Development files for libavfilter
libavfilter1 - Libav video filtering library
libavformat-dev - Development files for libavformat
libavformat52 - Libav file format library
libavutil-dev - Development files for libavutil
libavutil50 - Libav utility library
libpostproc-dev - Development files for libpostproc
libpostproc51 - Libav video postprocessing library
libswscale-dev - Development files for libswscale
libswscale0 - Libav video scaling library
Changes:
libav (4:0.6.2-1ubuntu1.1) natty-security; urgency=low
.
* SECURITY UPDATE: denial of service and possible code execution via
malformed OGG file
- debian/patches/CVE-2011-1196.patch: revalidate index when necessary
in libavformat/oggdec.c.
- CVE-2011-1196
* SECURITY UPDATE: denial of service and possible code execution via
malformed AMV file
- debian/patches/CVE-2011-1931.patch: don't change flags in
libavcodec/sp5xdec.c.
- CVE-2011-1931
* SECURITY UPDATE: arbitrary code execution via malformed CAVS file
- debian/patches/CVE-2011-3362.patch: validate values in
libavcodec/cavsdec.c.
- CVE-2011-3362
Checksums-Sha1:
7319abd3dc04fac4cc32b3853ea81f7a6284e9f5 2970 libav_0.6.2-1ubuntu1.1.dsc
01893c1692821a81fde56f3707c8dd3b1a3bf9af 37214 libav_0.6.2-1ubuntu1.1.diff.gz
Checksums-Sha256:
51e6a49829b9bae404c823ed011b127fb41e9ff612a454f2474b19b342c9139f 2970 libav_0.6.2-1ubuntu1.1.dsc
8d60baad216a450db1170601f4780b68dc0e98de5616ee2cd9e44db022162d86 37214 libav_0.6.2-1ubuntu1.1.diff.gz
Files:
6acf5a7716a3f956eebf177bf0e33b6d 2970 libs optional libav_0.6.2-1ubuntu1.1.dsc
65d94c3afcdf392993dcf82fefac0b77 37214 libs optional libav_0.6.2-1ubuntu1.1.diff.gz
Original-Maintainer: Debian multimedia packages maintainers <pkg-multimedia-maintainers at lists.alioth.debian.org>
More information about the Natty-changes
mailing list