Bug#343503: [CVE-2005-4048] avcodec_default_get_buffer heap overflow
Florian Weimer
fw at deneb.enyo.de
Thu Dec 15 18:37:30 UTC 2005
Package: gst-ffmpeg
Tags: security
Severity: grave
The package embeds a local copy of libavcodec, which is vulnerable to
CVE-2005-4048:
http://article.gmane.org/gmane.comp.video.ffmpeg.devel/26558
http://mplayerhq.hu/pipermail/ffmpeg-cvslog/2005-December/000979.html
Please check if it is necessary to apply the patch to gst-ffmpeg as
well.
More information about the Pkg-gstreamer-maintainers
mailing list