CVE-2012-2801

Published: 10 September 2012

Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to dimensions and "out of array writes."

Notes

Author	Note
mdeslaur	ffmpeg-extra in multiverse needs to have matching version libav-extra is built with tarball produced by libav package

Priority

Status

Package	Release	Status
ffmpeg Launchpad, Ubuntu, Debian	hardy	Ignored (end of life)
	lucid	Released (4:0.5.9-0ubuntu0.10.04.2)
	natty	Does not exist
	oneiric	Does not exist
	precise	Does not exist
	quantal	Does not exist
	upstream	Released (0.11)
	Patches: upstream: http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=1df49142bab1b7bccd11392aa9e819e297d21a6e
ffmpeg-extra Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Released (4:0.5.9-0ubuntu0.10.04.2)
	natty	Does not exist
	oneiric	Does not exist
	precise	Does not exist
	quantal	Does not exist
	upstream	Needs triage
libav Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Does not exist
	natty	Ignored (end of life)
	oneiric	Released (4:0.7.6-0ubuntu0.11.10.2)
	precise	Released (4:0.8.4-0ubuntu0.12.04.1)
	quantal	Released (6:0.8.4-0ubuntu0.12.10.1)
	upstream	Needs triage
	Patches: upstream: http://git.libav.org/?p=libav.git;a=commitdiff;h=85f477935cd6b34e6ec2716b20e15ce748277a89
libav-extra Launchpad, Ubuntu, Debian	hardy	Does not exist
	lucid	Does not exist
	natty	Ignored (end of life)
	oneiric	Released (4:0.7.6ubuntu0.11.10.2)
	precise	Released (4:0.8.4ubuntu0.12.04.1)
	quantal	Released (6:0.8.4ubuntu0.12.10.1)
	upstream	Needs triage

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›