CVE-2008-3162
Published: 14 July 2008
Stack-based buffer overflow in the str_read_packet function in libavformat/psxstr.c in FFmpeg before r13993 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted STR file that interleaves audio and video sectors.
Priority
Status
Package | Release | Status |
---|---|---|
ffmpeg Launchpad, Ubuntu, Debian |
dapper |
Released
(3:0.cvs20050918-5ubuntu1.2)
|
feisty |
Released
(3:0.cvs20060823-3.1ubuntu4.1)
|
|
gutsy |
Released
(3:0.cvs20070307-5ubuntu4.1)
|
|
hardy |
Released
(3:0.cvs20070307-5ubuntu7.1)
|
|
upstream |
Needs triage
|
|
ffmpeg-debian Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
feisty |
Does not exist
|
|
gutsy |
Does not exist
|
|
hardy |
Does not exist
|
|
upstream |
Released
|
|
Patches: upstream: http://svn.mplayerhq.hu/ffmpeg/trunk/libavformat/psxstr.c?r1=13649&r2=13993&pathrev=13993 |