SB2015020705 - Gentoo update for Libav

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2015020705

SB2015020705 - Gentoo update for Libav

Published: February 7, 2015 Updated: June 28, 2025

Security Bulletin ID SB2015020705
Severity
High
Patch available
YES
Number of vulnerabilities 11
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 45% Medium 55%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 11 secuirty vulnerabilities.


1) Resource management error (CVE-ID: CVE-2011-3934)

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Double free vulnerability in the vp3_update_thread_context function in libavcodec/vp3.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted vp3 data.


2) Input validation error (CVE-ID: CVE-2011-3935)

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

The codec_get_buffer function in ffmpeg.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via vectors related to a crafted image size.


3) Resource management error (CVE-ID: CVE-2011-3946)

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

The ff_h264_decode_sei function in libavcodec/h264_sei.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Supplemental enhancement information (SEI) data, which triggers an infinite loop.


4) Buffer overflow (CVE-ID: CVE-2013-0848)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted width in huffyuv data with the predictor set to median and the colorspace set to YUV422P, which triggers an out-of-bounds array access.


5) Buffer overflow (CVE-ID: CVE-2013-0851)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

The decode_frame function in libavcodec/eamad.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted Electronic Arts Madcow video data, which triggers an out-of-bounds array access.


6) Buffer overflow (CVE-ID: CVE-2013-0852)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

The parse_picture_segment function in libavcodec/pgssubdec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted RLE data, which triggers an out-of-bounds array access.


7) NULL pointer dereference (CVE-ID: CVE-2013-0860)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error. A remote attacker can trigger denial of service conditions via crafted picture data.


8) Buffer overflow (CVE-ID: CVE-2013-0868)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers to have an unspecified impact via crafted Huffyuv data, related to an out-of-bounds write and (1) unchecked return codes from the init_vlc function and (2) "len==0 cases."


9) Input validation error (CVE-ID: CVE-2013-3672)

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

The mm_decode_inter function in mmvideo.c in libavcodec in FFmpeg before 1.2.1 does not validate the relationship between a horizontal coordinate and a width value, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted American Laser Games (ALG) MM Video data.


10) Input validation error (CVE-ID: CVE-2013-3674)

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

The cdg_decode_frame function in cdgraphics.c in libavcodec in FFmpeg before 1.2.1 does not validate the presence of non-header data in a buffer, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted CD Graphics Video data.


11) Integer overflow (CVE-ID: CVE-2014-4609)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Integer overflow in the get_len function in libavutil/lzo.c in Libav before 0.8.13, 9.x before 9.14, and 10.x before 10.2 allows remote attackers to execute arbitrary code via a crafted Literal Run.


Remediation

Install update from vendor's website.

References