Your submission was sent successfully! Close

CVE-2006-4800

Published: 14 September 2006

Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is a different vulnerability than CVE-2005-4048 and CVE-2006-2802.

Priority

Unknown

Status

Package Release Status
ffmpeg
Launchpad, Ubuntu, Debian
dapper
Released (0.cvs20050918-5ubuntu1.1)
edgy Not vulnerable

feisty Not vulnerable

upstream Needs triage

gst-ffmpeg
Launchpad, Ubuntu, Debian
dapper Needed

edgy Needed

feisty
Released (0.8.7-10ubuntu1)
upstream Needs triage

gstreamer0.10-ffmpeg
Launchpad, Ubuntu, Debian
dapper Needed

edgy Needed

feisty
Released (0.10.2-0ubuntu4)
upstream Needs triage

kino
Launchpad, Ubuntu, Debian
dapper Not vulnerable

edgy Not vulnerable

feisty Not vulnerable

upstream Needs triage

xine-lib
Launchpad, Ubuntu, Debian
dapper Not vulnerable

edgy Not vulnerable

feisty Not vulnerable

upstream Needs triage