CVE-2005-4048
Publication date 7 December 2005
Last updated 24 July 2024
Ubuntu priority
Heap-based buffer overflow in the avcodec_default_get_buffer function (utils.c) in FFmpeg libavcodec 0.4.9-pre1 and earlier, as used in products such as (1) mplayer, (2) xine-lib, (3) Xmovie, and (4) GStreamer, allows remote attackers to execute arbitrary commands via small PNG images with palettes.
Status
Package | Ubuntu Release | Status |
---|---|---|
ffmpeg | 9.10 karmic |
Not affected
|
9.04 jaunty |
Not affected
|
|
8.10 intrepid |
Not affected
|
|
8.04 LTS hardy |
Fixed 0.cvs20060823-3.1ubuntu1
|
|
7.10 gutsy |
Fixed 0.cvs20060823-3.1ubuntu1
|
|
7.04 feisty |
Fixed 0.cvs20060823-3.1ubuntu1
|
|
6.10 edgy |
Fixed 0.cvs20060823-3.1ubuntu1
|
|
6.06 LTS dapper |
Fixed 3:0.cvs20050918-5ubuntu1.2
|
|
gst-ffmpeg | 9.10 karmic | Not in release |
9.04 jaunty | Not in release | |
8.10 intrepid | Not in release | |
8.04 LTS hardy | Not in release | |
7.10 gutsy | Not in release | |
7.04 feisty |
Fixed 0.8.7-5ubuntu1
|
|
6.10 edgy |
Fixed 0.8.7-5ubuntu1
|
|
6.06 LTS dapper |
Fixed 0.8.7-5ubuntu1
|
|
gstreamer0.10-ffmpeg | 9.10 karmic |
Fixed 0.10.1-0ubuntu2
|
9.04 jaunty |
Fixed 0.10.1-0ubuntu2
|
|
8.10 intrepid |
Fixed 0.10.1-0ubuntu2
|
|
8.04 LTS hardy |
Fixed 0.10.1-0ubuntu2
|
|
7.10 gutsy |
Fixed 0.10.1-0ubuntu2
|
|
7.04 feisty |
Fixed 0.10.1-0ubuntu2
|
|
6.10 edgy |
Fixed 0.10.1-0ubuntu2
|
|
6.06 LTS dapper |
Fixed 0.10.1-0ubuntu2
|
|
kino | 9.10 karmic |
Not affected
|
9.04 jaunty |
Not affected
|
|
8.10 intrepid |
Not affected
|
|
8.04 LTS hardy |
Not affected
|
|
7.10 gutsy |
Not affected
|
|
7.04 feisty |
Not affected
|
|
6.10 edgy |
Not affected
|
|
6.06 LTS dapper |
Not affected
|
|
vlc | 9.10 karmic |
Fixed 0.8.6.release-0ubuntu4
|
9.04 jaunty |
Fixed 0.8.6.release-0ubuntu4
|
|
8.10 intrepid |
Fixed 0.8.6.release-0ubuntu4
|
|
8.04 LTS hardy |
Fixed 0.8.6.release-0ubuntu4
|
|
7.10 gutsy |
Fixed 0.8.6.release-0ubuntu4
|
|
7.04 feisty |
Fixed 0.8.6.release-0ubuntu4
|
|
6.10 edgy |
Fixed 0.8.6-svn20061012.debian-1ubuntu1.1
|
|
6.06 LTS dapper | Ignored end of life | |
xine-extracodecs | 9.10 karmic | Not in release |
9.04 jaunty | Not in release | |
8.10 intrepid | Not in release | |
8.04 LTS hardy | Not in release | |
7.10 gutsy | Not in release | |
7.04 feisty |
Fixed 1.1.1+ubuntu1-2
|
|
6.10 edgy |
Fixed 1.1.1+ubuntu1-2
|
|
6.06 LTS dapper |
Fixed 1.1.1+ubuntu1-2
|
|
xine-lib | 9.10 karmic |
Fixed 1.1.4-2ubuntu3
|
9.04 jaunty |
Fixed 1.1.4-2ubuntu3
|
|
8.10 intrepid |
Fixed 1.1.4-2ubuntu3
|
|
8.04 LTS hardy |
Fixed 1.1.4-2ubuntu3
|
|
7.10 gutsy |
Fixed 1.1.4-2ubuntu3
|
|
7.04 feisty |
Fixed 1.1.4-2ubuntu3
|
|
6.10 edgy |
Fixed 1.1.2+repacked1-0ubuntu3.4
|
|
6.06 LTS dapper |
Fixed 1.1.1+ubuntu2-7.7
|