CVE-2008-3162
Published: 14 July 2008
Stack-based buffer overflow in the str_read_packet function in libavformat/psxstr.c in FFmpeg before r13993 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted STR file that interleaves audio and video sectors.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
ffmpeg Launchpad, Ubuntu, Debian |
dapper |
Released
(3:0.cvs20050918-5ubuntu1.2)
|
| feisty |
Released
(3:0.cvs20060823-3.1ubuntu4.1)
|
|
| gutsy |
Released
(3:0.cvs20070307-5ubuntu4.1)
|
|
| hardy |
Released
(3:0.cvs20070307-5ubuntu7.1)
|
|
| upstream |
Needs triage
|
|
|
ffmpeg-debian Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| feisty |
Does not exist
|
|
| gutsy |
Does not exist
|
|
| hardy |
Does not exist
|
|
| upstream |
Released
|
|
|
Patches: upstream: http://svn.mplayerhq.hu/ffmpeg/trunk/libavformat/psxstr.c?r1=13649&r2=13993&pathrev=13993 |
||