| Revision Date: | 2014-12-31 | Version: | 1 | | Title: | CVE-2014-4610 on Ubuntu 16.04 LTS (xenial) - medium. | | Description: | An integer overflow can occur when processing any variant of a "literal run" in the av_lzo1x_decode function. Each of these three locations is subject to an integer overflow when processing zero bytes. . Due to flaws in multiple functions within the libav code base, various checks can be bypassed that allow for corruption of precise locations in memory.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2014-4610
| | Platform(s): | Ubuntu 16.04 LTS
| Product(s): | | | Definition Synopsis | | Ubuntu 16.04 LTS (xenial) is installed. AND Package Information
NOT ffmpeg package in xenial, while related to the CVE in some way, is not affected.
OR NOT libav-tools package in xenial, while related to the CVE in some way, is not affected.
OR NOT libavcodec-extra package in xenial, while related to the CVE in some way, is not affected.
OR NOT libavcodec-ffmpeg-extra56 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libavcodec-ffmpeg56 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libavdevice-ffmpeg56 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libavfilter-ffmpeg5 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libavformat-ffmpeg56 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libavresample-ffmpeg2 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libavutil-ffmpeg54 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libpostproc-ffmpeg53 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libswresample-ffmpeg1 package in xenial, while related to the CVE in some way, is not affected.
OR NOT libswscale-ffmpeg3 package in xenial, while related to the CVE in some way, is not affected.
|
|