Launchpad CVE tracker

CVE 2012-2788

Unspecified vulnerability in the avi_read_packet function in libavformat/avidec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to an "out of array read" when a "packet is shrunk."

Related bugs and status

CVE-2012-2788 (Candidate) is related to these bugs:

Bug #1075593: October 2012 libav security tracking bug

		In	Importance	Status
1075593	October 2012 libav security tracking bug	libav (Ubuntu)	Medium	Fix Released
1075593	October 2012 libav security tracking bug	libav (Ubuntu Oneiric)	Medium	Invalid
1075593	October 2012 libav security tracking bug	libav (Ubuntu Precise)	Medium	Fix Released
1075593	October 2012 libav security tracking bug	libav (Ubuntu Quantal)	Medium	Fix Released
1075593	October 2012 libav security tracking bug	libav (Ubuntu Raring)	Medium	Fix Released

Bug #1078124: updating issues with [USN-1630-1] Libav vulnerabilities and Medibuntu packages

Summary				In	Importance	Status
	1078124	updating issues with [USN-1630-1] Libav vulnerabilities and Medibuntu packages		Medibuntu	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2012-2788

References