CVE-2014-9602
Publication date 16 January 2015
Last updated 24 July 2024
Ubuntu priority
libavcodec/xface.h in FFmpeg before 2.5.2 establishes certain digits and words array dimensions that do not satisfy a required mathematical relationship, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted X-Face image data.
Status
Package | Ubuntu Release | Status |
---|---|---|
ffmpeg | ||
14.04 LTS trusty | Not in release | |
libav | ||
14.04 LTS trusty |
Not affected
|
|
Patch details
Package | Patch details |
---|---|
ffmpeg |