Ubuntu

“ffmpeg” 4:0.5+svn20090706-2ubuntu2.1 source package in Ubuntu

Changelog

ffmpeg (4:0.5+svn20090706-2ubuntu2.1) karmic-security; urgency=low

  * SECURITY UPDATE: Fix a multitude of security issues
    - debian/patches/CVE-2009-46XX/security-issue03.patch: check stream
      existence before assignment
    - debian/patches/CVE-2009-46XX/security-issue04.patch: check submap
      indexes
    - debian/patches/CVE-2009-46XX/security-issue05.patch: check classbook
      value
    - debian/patches/CVE-2009-46XX/security-issue06.patch: add checks for
      per-packet mode indexes and per-header mode mapping indexes
    - debian/patches/CVE-2009-46XX/security-issue07.patch: check masterbook
      index and subclass book index.
    - debian/patches/CVE-2009-46XX/security-issue08.patch: check
      res_setup->books
    - debian/patches/CVE-2009-46XX/security-issue09.patch: check
      begin/end/partition_size
    - debian/patches/CVE-2009-46XX/security-issue10.patch: check validity
      of channels & samplerate
    - debian/patches/CVE-2009-46XX/security-issue11.patch: fix book_idx
      check
    - debian/patches/CVE-2009-46XX/security-issue12.patch: sanity checks
      for magnitude and angle
    - debian/patches/CVE-2009-46XX/security-issue13.patch: fix = -> == typo
    - debian/patches/CVE-2009-46XX/security-issue14.patch: check dimensions
      against 0 too
    - debian/patches/CVE-2009-46XX/security-issue15.patch: fix
      init_get_bits() buffer size
    - debian/patches/CVE-2009-46XX/security-issue17.patch: make sure that
      all memory allocations succeed
    - debian/patches/CVE-2009-46XX/security-issue18.patch: fix possible
      buffer over-read in vorbis_comment
    - debian/patches/CVE-2009-46XX/security-issue19.patch: set data_size to
      0 to avoid having it uninitialized
    - debian/patches/CVE-2009-46XX/security-issue20.patch: disable parsing
      for ogg streams where no ogg header was found
    - debian/patches/CVE-2009-46XX/security-issue22.patch: check codec_id
      and codec_type, make sure priv_data is freed and codec is set to NULL
    - CVE-2009-4632
    - CVE-2009-4633
    - CVE-2009-4634
    - CVE-2009-4635
    - CVE-2009-4637
    - CVE-2009-4639
    - CVE-2009-4640
 -- Marc Deslauriers <email address hidden>   Thu, 08 Apr 2010 09:34:05 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2010-04-08
Uploaded to:
Karmic
Original maintainer:
Ubuntu Development Team
Component:
main
Architectures:
any
Section:
libs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size MD5 Checksum
ffmpeg_0.5+svn20090706.orig.tar.gz 3.2 MiB 8ab802d5cc6645b646c3fe46acd80f20
ffmpeg_0.5+svn20090706-2ubuntu2.1.diff.gz 105.5 KiB 46255110cea73561f5e95f0157412237
ffmpeg_0.5+svn20090706-2ubuntu2.1.dsc 2.3 KiB bd9a8b1809ac0a3e0d33d2a73554d0e9

Binary packages built by this source

ffmpeg: No summary available for ffmpeg in ubuntu karmic.

No description available for ffmpeg in ubuntu karmic.

ffmpeg-dbg: No summary available for ffmpeg-dbg in ubuntu karmic.

No description available for ffmpeg-dbg in ubuntu karmic.

ffmpeg-doc: No summary available for ffmpeg-doc in ubuntu karmic.

No description available for ffmpeg-doc in ubuntu karmic.

libavcodec-dev: No summary available for libavcodec-dev in ubuntu karmic.

No description available for libavcodec-dev in ubuntu karmic.

libavcodec52: No summary available for libavcodec52 in ubuntu karmic.

No description available for libavcodec52 in ubuntu karmic.

libavdevice-dev: No summary available for libavdevice-dev in ubuntu karmic.

No description available for libavdevice-dev in ubuntu karmic.

libavdevice52: No summary available for libavdevice52 in ubuntu karmic.

No description available for libavdevice52 in ubuntu karmic.

libavfilter-dev: No summary available for libavfilter-dev in ubuntu karmic.

No description available for libavfilter-dev in ubuntu karmic.

libavfilter0: No summary available for libavfilter0 in ubuntu karmic.

No description available for libavfilter0 in ubuntu karmic.

libavformat-dev: No summary available for libavformat-dev in ubuntu karmic.

No description available for libavformat-dev in ubuntu karmic.

libavformat52: No summary available for libavformat52 in ubuntu karmic.

No description available for libavformat52 in ubuntu karmic.

libavutil-dev: No summary available for libavutil-dev in ubuntu karmic.

No description available for libavutil-dev in ubuntu karmic.

libavutil49: No summary available for libavutil49 in ubuntu karmic.

No description available for libavutil49 in ubuntu karmic.

libpostproc-dev: No summary available for libpostproc-dev in ubuntu karmic.

No description available for libpostproc-dev in ubuntu karmic.

libpostproc51: No summary available for libpostproc51 in ubuntu karmic.

No description available for libpostproc51 in ubuntu karmic.

libswscale-dev: No summary available for libswscale-dev in ubuntu karmic.

No description available for libswscale-dev in ubuntu karmic.

libswscale0: No summary available for libswscale0 in ubuntu karmic.

No description available for libswscale0 in ubuntu karmic.