‫ FFmpeg Multiple Vulnerabilities

IRCAD2013032538
ID: IRCAD2013032538
Release Date: 2013-03-04
Criticality level: Highly critical
Software:
FFmpeg 1.x
Description:
Multiple vulnerabilities have been reported in FFmpeg, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
1) An error within the "ff_h264_decode_seq_parameter_set()" function (libavcodec/h264_ps.c) when decoding certain parameter set can be exploited to cause an out of array access violation.
2) An error within the "attribute_align_arg avcodec_decode_audio4()" function (libavcodec/utils.c) can be exploited to cause an out of array access violation.
3) An error within the "swr_init()" function (libswresample/swresample.c) can be exploited to cause an out of array access violation.
4) An error within the "read_header()" function (libavcodec/shorten.c) can be exploited to free invalid addresses.
5) An error within the "doubles2str()" and "shorts2str()" functions (libavcodec/tiff.c) can be exploited to cause an out of array access violation.
6) An error within the "ff_add_png_paeth_prediction()" function (libavcodec/pngdec.c) can be exploited to cause an out of array access violation.
7) An integer overflow error within the "old_codec37()" function (libavcodec/sanm.c) can be exploited to corrupt memory.
8) An error within the "old_codec37()" function (libavcodec/sanm.c) can be exploited to cause an out of array access violation.
9) An error within the "advance_line()" function (libavcodec/targa.c) can be exploited to cause an out of array access violation.
The vulnerabilities are reported in versions prior to 1.1.3.
Solution
Update to version 1.1.3.
References:
Secunia
http://secunia.com/advisories/52459/

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 15 اسفند 1391

امتیاز

امتیاز شما
تعداد امتیازها:0