Bug#401304: CVE-2006-4800: GStreamer FFmpeg Plug-in Multiple Buffer Overflows

Stefan Fritsch sf at sfritsch.de
Sat Dec 2 14:10:23 CET 2006


Package: gstreamer0.8-ffmpeg
Severity: grave
Tags: security
Justification: user security hole


According to

http://secunia.com/advisories/22202/

gstreamer0.8-ffmpeg is vulnerable to an ffmpeg buffer overflow and
gstreamer0.8-ffmpeg does not seem to link dynamically against the ffmpeg in
Debian. You should try to link against ffmpeg dynamically if possible.

Please mention the CVE id in the changelog.




More information about the Pkg-gstreamer-maintainers mailing list