Bug#401304: CVE-2006-4800: GStreamer FFmpeg Plug-in Multiple Buffer
Overflows
Stefan Fritsch
sf at sfritsch.de
Sat Dec 2 14:10:23 CET 2006
Package: gstreamer0.8-ffmpeg
Severity: grave
Tags: security
Justification: user security hole
According to
http://secunia.com/advisories/22202/
gstreamer0.8-ffmpeg is vulnerable to an ffmpeg buffer overflow and
gstreamer0.8-ffmpeg does not seem to link dynamically against the ffmpeg in
Debian. You should try to link against ffmpeg dynamically if possible.
Please mention the CVE id in the changelog.
More information about the Pkg-gstreamer-maintainers
mailing list