Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2015-4479

Published: 11 August 2015

Multiple integer overflows in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allow remote attackers to execute arbitrary code via a crafted saio chunk in MPEG-4 video data.

Priority

Medium

Status

Package Release Status
firefox
Launchpad, Ubuntu, Debian 		upstream
Released (40.0)
precise
Released (40.0+build4-0ubuntu0.12.04.1)
trusty Does not exist
(trusty was released [40.0+build4-0ubuntu0.14.04.1])
vivid
Released (40.0+build4-0ubuntu0.15.04.1)

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading