Some vulnerabilities have been reported in FFmpeg, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.

1) Errors within the Vorbis Decoder (libavcodec/vorbis_dec.c) component when processing certain Vorbis files can be exploited to e.g. cause a crash or memory corruption by tricking a user into opening specially crafted Vorbis files.

2) An error within the handling of malformed VC1 files can be exploited to e.g. cause a stack corruption by tricking a user into opening specially crafted VC1 files.

3) An error within the "ape_read_header()" function in libavformat/ape.c can be exploited to e.g. cause a division by zero or memory corruption by tricking a user into opening specially crafted APE files.

Solution
Fixed in version 0.6.90-rc0.
Further details available in Customer Area

Provided and/or discovered by
1) gmaxwell and CERT
2) Dan Rosenberg
3) KedAns-Dz

Changelog
Further details available in Customer Area

Original Advisory
http://roundup.ffmpeg.org/issue2322
http://roundup.ffmpeg.org/issue2548
http://roundup.ffmpeg.org/issue2550
http://git.ffmpeg.org/?p=ffmpeg.git;a=commitdiff;h=3dde66752d59dfdd0f3727efd66e7202b3c75078
http://git.ffmpeg.org/?p=ffmpeg.git;a=commitdiff;h=366d919016a679d3955f6fe5278fa7ce4f47b81e
http://git.ffmpeg.org/?p=ffmpeg.git;a=commitdiff;h=13184036a6b1b1d4b61c91118c0896e9ad4634c3
http://git.ffmpeg.org/?p=ffmpeg.git;a=commitdiff;h=925aa96915b8143017cb63418cb709b992c59065
http://ffmpeg.org/releases/ffmpeg-0.5.4.changelog
http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=8312e3fc9041027a33c8bc667bb99740fdf41dd5

Launchpad Bug #690169:
https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/690169

Deep Links
Links available in Customer Area