CVE Reference: CVE-2010-3429

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-3429

Description:
flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."

CVE Status:
Candidate

References:

UBUNTU
  http://www.ubuntu.com/usn/usn-1104-1/

SAID
  Secunia Advisory: SA41626
  Secunia Advisory: SA43323

MLIST
  http://www.openwall.com/lists/oss-security/2010/09/28/4

MISC
  http://www.ocert.org/advisories/ocert-2010-004.html

MANDRIVA
  http://www.mandriva.com/security/advisories?name=MDVSA-2011:112
  http://www.mandriva.com/security/advisories?name=MDVSA-2011:062
  http://www.mandriva.com/security/advisories?name=MDVSA-2011:088
  http://www.mandriva.com/security/advisories?name=MDVSA-2011:089
  http://www.mandriva.com/security/advisories?name=MDVSA-2011:061
  http://www.mandriva.com/security/advisories?name=MDVSA-2011:060
  http://www.mandriva.com/security/advisories?name=MDVSA-2011:114

DEBIAN
  http://www.debian.org/security/2011/dsa-2165

CONFIRM
  http://git.ffmpeg.org/?p=ffmpeg;a=commit;h=16c592155f117ccd7b86006c45aacc692a81c23b

BUGTRAQ
  http://www.securityfocus.com/archive/1/archive/1/514009/100/0/threaded


Return to the previous page.