libav security update tracking bug
Bug #911811 reported by
Marc Deslauriers
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libav (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Natty |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Oneiric |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Precise |
Fix Released
|
Undecided
|
Unassigned | ||
libav-extra (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Natty |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Oneiric |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Precise |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
This is a tracking bug for the libav security update.
security vulnerability: | no → yes |
Changed in libav (Ubuntu Precise): | |
status: | New → Fix Released |
Changed in libav (Ubuntu Natty): | |
status: | New → In Progress |
Changed in libav (Ubuntu Oneiric): | |
status: | New → In Progress |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in libav (Ubuntu Natty): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in libav-extra (Ubuntu Precise): | |
status: | New → Fix Released |
Changed in libav-extra (Ubuntu Natty): | |
status: | New → In Progress |
Changed in libav-extra (Ubuntu Oneiric): | |
status: | New → In Progress |
Changed in libav-extra (Ubuntu Natty): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in libav-extra (Ubuntu Oneiric): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in libav-extra (Ubuntu Natty): | |
status: | In Progress → Fix Released |
Changed in libav-extra (Ubuntu Oneiric): | |
status: | In Progress → Fix Released |
To post a comment you must log in.
This bug was fixed in the package libav - 4:0.7.3- 0ubuntu0. 11.10.1
--------------- 3-0ubuntu0. 11.10.1) oneiric-security; urgency=low
libav (4:0.7.
* Update to 0.7.3 to fix multiple security issues (LP: #911811):
- SECURITY UPDATE: denial of service and possible code execution via
malformed file containing QDM2 stream
- CVE-2011-4351
- SECURITY UPDATE: denial of service and possible code execution via
malformed file containing VP3 stream
- CVE-2011-4352
- SECURITY UPDATE: denial of service and possible code execution via
malformed file containing VP5 or VP6 streams
- CVE-2011-4353
- SECURITY UPDATE: denial of service and possible code execution via
malformed VMD file
- CVE-2011-4364
- SECURITY UPDATE: denial of service and possible code execution via
malformed file containing svq1 stream
- CVE-2011-4579
-- Marc Deslauriers <email address hidden> Tue, 03 Jan 2012 15:31:49 -0500