Launchpad CVE tracker

CVE 2012-2775

Unspecified vulnerability in the read_var_block_data function in libavcodec/alsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to a large order and an "out of array write in quant_cof."

Related bugs and status

CVE-2012-2775 (Candidate) is related to these bugs:

Bug #1075593: October 2012 libav security tracking bug

		In	Importance	Status
1075593	October 2012 libav security tracking bug	libav (Ubuntu)	Medium	Fix Released
1075593	October 2012 libav security tracking bug	libav (Ubuntu Oneiric)	Medium	Invalid
1075593	October 2012 libav security tracking bug	libav (Ubuntu Precise)	Medium	Fix Released
1075593	October 2012 libav security tracking bug	libav (Ubuntu Quantal)	Medium	Fix Released
1075593	October 2012 libav security tracking bug	libav (Ubuntu Raring)	Medium	Fix Released

Bug #1078124: updating issues with [USN-1630-1] Libav vulnerabilities and Medibuntu packages

Summary				In	Importance	Status
	1078124	updating issues with [USN-1630-1] Libav vulnerabilities and Medibuntu packages		Medibuntu	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2012-2775

References