Launchpad CVE tracker

CVE 2017-5024

FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file.

Related bugs and status

CVE-2017-5024 (Candidate) is related to these bugs:

Bug #1664147: Chromium on trusty too outdated; not supported by gmail

Summary				In	Importance	Status
	1664147	Chromium on trusty too outdated; not supported by gmail		chromium-browser (Ubuntu)	High	Fix Released

Bug #1664402: FFmpeg security fixes February 2017 (yakkety)

Summary				In	Importance	Status
	1664402	FFmpeg security fixes February 2017 (yakkety)		ffmpeg (Ubuntu)	Medium	Fix Released

Bug #1664403: FFmpeg security fixes February 2017 (xenial)

Summary				In	Importance	Status
	1664403	FFmpeg security fixes February 2017 (xenial)		ffmpeg (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://chromereleases...
CONFIRM: https://crbug.com/643951
BID: 95792
GENTOO: GLSA-201701-66
GENTOO: GLSA-201705-05
SECTRACK: 1037718
DEBIAN: DSA-3776
REDHAT: RHSA-2017:0206

Launchpad.net

CVE 2017-5024

Related bugs and status

Related bugs

References