Oval Definition:	oval:com.ubuntu.precise:def:20151872000
Revision Date: 2015-07-26 Version: 1 Title: CVE-2015-1872 on Ubuntu 12.04 LTS (precise) - low. Description: The ff_mjpeg_decode_sof function in libavcodec/mjpegdec.c in FFmpeg before 2.5.4 does not validate the number of components in a JPEG-LS Start Of Frame segment, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted Motion JPEG data. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-1872 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'gstreamer0.10-ffmpeg' package in precise is affected and needs fixing. OR The 'kino' package in precise is affected and needs fixing. OR The 'libav' package in precise was vulnerable but has been fixed (note: '4:0.8.17-0ubuntu0.12.04.2').
BACK