Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Gentoo: GLSA-200811-03 Normal: FAAD2 Buffer Overflow Threat

gentoo
Calendar Grey November 9, 2008
Dist Gentoo Esm H88
Gentoo Security Advisory GLSA 201001-05 addresses a vulnerability in VLC allowing for potential execution of unauthorized commands.
A buffer overflow in FAAD2 might lead to user-assisted execution of arbitrary code via an MP4 file.

Summary

Gentoo Linux Security Advisory GLSA 200811-03 https://security.gentoo.org/ Severity: Normal Title: FAAD2: User-assisted execution of arbitrary code Date: November 09, 2008 Bugs: #238445 ID: 200811-03

Synopsis ======= A buffer overflow in FAAD2 might lead to user-assisted execution of arbitrary code via an MP4 file.
Background ========= FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/faad2 < 2.6.1-r2 >= 2.6.1-r2
========== The ICST-ERCIS (Peking University) reported a heap-based buffer overflow in the decodeMP4file() function in frontend/main.c.
Impact ===== A remote attacker could entice a user...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo buffer overflow arbitrary code execution normal severity user-assisted execution faad2

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo buffer overflow arbitrary code execution normal severity user-assisted execution faad2

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here