Ubuntu

“ffmpeg-debian” 3:0.svn20090303-1ubuntu6.1 source package in Ubuntu

Changelog

ffmpeg-debian (3:0.svn20090303-1ubuntu6.1) jaunty-security; urgency=low

  * SECURITY UPDATE: Fix a multitude of security issues
    - debian/patches/CVE-2009-46XX/security-issue03.patch: check stream
      existence before assignment
    - debian/patches/CVE-2009-46XX/security-issue04.patch: check submap
      indexes
    - debian/patches/CVE-2009-46XX/security-issue05.patch: check classbook
      value
    - debian/patches/CVE-2009-46XX/security-issue06.patch: add checks for
      per-packet mode indexes and per-header mode mapping indexes
    - debian/patches/CVE-2009-46XX/security-issue07.patch: check masterbook
      index and subclass book index.
    - debian/patches/CVE-2009-46XX/security-issue08.patch: check
      res_setup->books
    - debian/patches/CVE-2009-46XX/security-issue09.patch: check
      begin/end/partition_size
    - debian/patches/CVE-2009-46XX/security-issue10.patch: check validity
      of channels & samplerate
    - debian/patches/CVE-2009-46XX/security-issue11.patch: fix book_idx
      check
    - debian/patches/CVE-2009-46XX/security-issue12.patch: sanity checks
      for magnitude and angle
    - debian/patches/CVE-2009-46XX/security-issue13.patch: fix = -> == typo
    - debian/patches/CVE-2009-46XX/security-issue14.patch: check dimensions
      against 0 too
    - debian/patches/CVE-2009-46XX/security-issue15.patch: fix
      init_get_bits() buffer size
    - debian/patches/CVE-2009-46XX/security-issue17.patch: make sure that
      all memory allocations succeed
    - debian/patches/CVE-2009-46XX/security-issue18.patch: fix possible
      buffer over-read in vorbis_comment
    - debian/patches/CVE-2009-46XX/security-issue19.patch: set data_size to
      0 to avoid having it uninitialized
    - debian/patches/CVE-2009-46XX/security-issue20.patch: disable parsing
      for ogg streams where no ogg header was found
    - debian/patches/CVE-2009-46XX/security-issue22.patch: check codec_id
      and codec_type, make sure priv_data is freed and codec is set to NULL
    - CVE-2009-4632
    - CVE-2009-4633
    - CVE-2009-4634
    - CVE-2009-4635
    - CVE-2009-4637
    - CVE-2009-4639
    - CVE-2009-4640
 -- Marc Deslauriers <email address hidden>   Thu, 08 Apr 2010 09:12:45 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2010-04-08
Uploaded to:
Jaunty
Original maintainer:
Ubuntu Development Team
Component:
main
Architectures:
any
Section:
libs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size MD5 Checksum
ffmpeg-debian_0.svn20090303.orig.tar.gz 3.1 MiB cd6e799ee850b3bd83adb4bc537592d7
ffmpeg-debian_0.svn20090303-1ubuntu6.1.diff.gz 35.9 KiB e33208eef1c16818c14cb2438c2f76bb
ffmpeg-debian_0.svn20090303-1ubuntu6.1.dsc 2.2 KiB 7cd8257af686257eeb3dc4899ead5485

Binary packages built by this source

ffmpeg: No summary available for ffmpeg in ubuntu jaunty.

No description available for ffmpeg in ubuntu jaunty.

ffmpeg-dbg: No summary available for ffmpeg-dbg in ubuntu jaunty.

No description available for ffmpeg-dbg in ubuntu jaunty.

ffmpeg-doc: No summary available for ffmpeg-doc in ubuntu jaunty.

No description available for ffmpeg-doc in ubuntu jaunty.

libavcodec-dev: No summary available for libavcodec-dev in ubuntu jaunty.

No description available for libavcodec-dev in ubuntu jaunty.

libavcodec52: No summary available for libavcodec52 in ubuntu jaunty.

No description available for libavcodec52 in ubuntu jaunty.

libavdevice-dev: No summary available for libavdevice-dev in ubuntu jaunty.

No description available for libavdevice-dev in ubuntu jaunty.

libavdevice52: No summary available for libavdevice52 in ubuntu jaunty.

No description available for libavdevice52 in ubuntu jaunty.

libavfilter-dev: No summary available for libavfilter-dev in ubuntu jaunty.

No description available for libavfilter-dev in ubuntu jaunty.

libavfilter0: No summary available for libavfilter0 in ubuntu jaunty.

No description available for libavfilter0 in ubuntu jaunty.

libavformat-dev: No summary available for libavformat-dev in ubuntu jaunty.

No description available for libavformat-dev in ubuntu jaunty.

libavformat52: No summary available for libavformat52 in ubuntu jaunty.

No description available for libavformat52 in ubuntu jaunty.

libavutil-dev: No summary available for libavutil-dev in ubuntu jaunty.

No description available for libavutil-dev in ubuntu jaunty.

libavutil49: No summary available for libavutil49 in ubuntu jaunty.

No description available for libavutil49 in ubuntu jaunty.

libpostproc-dev: No summary available for libpostproc-dev in ubuntu jaunty.

No description available for libpostproc-dev in ubuntu jaunty.

libpostproc51: No summary available for libpostproc51 in ubuntu jaunty.

No description available for libpostproc51 in ubuntu jaunty.

libswscale-dev: No summary available for libswscale-dev in ubuntu jaunty.

No description available for libswscale-dev in ubuntu jaunty.

libswscale0: No summary available for libswscale0 in ubuntu jaunty.

No description available for libswscale0 in ubuntu jaunty.