faad2 2.6.1-2ubuntu0.1 source package in Ubuntu
Changelog
faad2 (2.6.1-2ubuntu0.1) hardy-security; urgency=low
* SECURITY UPDATE: Heap-based buffer overflow in the decodeMP4file function
(frontend/main.c) in FAAD2 before 2.6.1 allows remote attackers to cause
a denial of service (crash) and possibly execute arbitrary code via a
crafted MPEG-4 (MP4) file. (Closes LP: #277110)
* 12_heap_overflow.dpatch
- Patch supplied by upstream to address vulnerability.
* References
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4201
http://www.audiocoding.com/patch/main_overflow.diff
CVE-2008-4201
-- Stefan Lesicnik <email address hidden> Thu, 02 Oct 2008 16:26:26 +0200
Upload details
- Uploaded by:
- Stefan Lesicnik
- Uploaded to:
- Hardy
- Original maintainer:
- MOTU
- Architectures:
- any
- Section:
- misc
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| faad2_2.6.1.orig.tar.gz | 819.7 KiB | 8ad2c2e0c09b787a943e2ef831c1c84534e3a8726cc1eb1abc4da9eb3038285c |
| faad2_2.6.1-2ubuntu0.1.diff.gz | 348.3 KiB | 9715c23a0b2b56c9621dc046f286cb6e10e4c011e81d9c81b38469e5f6a14963 |
| faad2_2.6.1-2ubuntu0.1.dsc | 760 bytes | e7d186c8d8f159653185b8074d99eb8ef23cdd909e4e74cef1f719ac7c5d2e12 |
Available diffs
- diff from 2.6.1-2 to 2.6.1-2ubuntu0.1 (1.3 KiB)
Binary packages built by this source
- faad: No summary available for faad in ubuntu hardy.
No description available for faad in ubuntu hardy.
- libfaad-dev: No summary available for libfaad-dev in ubuntu hardy.
No description available for libfaad-dev in ubuntu hardy.
- libfaad0: No summary available for libfaad0 in ubuntu hardy.
No description available for libfaad0 in ubuntu hardy.
- libfaad2-0: No summary available for libfaad2-0 in ubuntu hardy.
No description available for libfaad2-0 in ubuntu hardy.
