Launchpad.net

CVE 2011-4353

The (1) av_image_fill_pointers, (2) vp5_parse_coeff, and (3) vp6_parse_coeff functions in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allow remote attackers to cause a denial of service (out-of-bounds read) via a crafted VP5 or VP6 stream.

Related bugs and status

CVE-2011-4353 (Candidate) is related to these bugs:

Bug #911811: libav security update tracking bug

		In	Importance	Status
911811	libav security update tracking bug	libav (Ubuntu)	Undecided	Fix Released
911811	libav security update tracking bug	libav (Ubuntu Natty)	Undecided	Fix Released
911811	libav security update tracking bug	libav (Ubuntu Oneiric)	Undecided	Fix Released
911811	libav security update tracking bug	libav (Ubuntu Precise)	Undecided	Fix Released
911811	libav security update tracking bug	libav-extra (Ubuntu)	Undecided	Fix Released
911811	libav security update tracking bug	libav-extra (Ubuntu Natty)	Undecided	Fix Released
911811	libav security update tracking bug	libav-extra (Ubuntu Oneiric)	Undecided	Fix Released
911811	libav security update tracking bug	libav-extra (Ubuntu Precise)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-4353

Related bugs and status

Related bugs

References