Release date:
Updated on:
Affected Systems:
FFmpeg 2.x
Description:
--------------------------------------------------------------------------------
Bugtraq id: 64771
FFmpeg is a free software that allows you to perform video, transfer, and stream functions in multiple formats of audio and video.
FFmpeg 2.x has a security vulnerability in the implementation of multiple functions, which can be exploited maliciously to cause denial of service and leak sensitive information.
1. The "hevc_decode_free ()" function (libavcodec/hevc. c) has the vulnerability of reuse after release, which can indirectly reference the released memory;
2. An error in the "parse_MP4SLDescrTag ()" function (libavformat/mpegts. c) can trigger an asserted failure;
3. Memory leakage may occur due to errors in the "rm_read_audio_stream_info ()" function (libavformat/rmdec. c;
4. Memory leakage may be caused by errors in the "ape_read_packet ()" function (libavformat/ape. c;
5. An error in the "decode_array_0000 ()" function (libavcodec/apedec. c) can trigger an asserted failure;
6. Errors in decoding h264 files may indirectly reference the released memory;
7. A zero division error in the "ogm_header ()" function (libavformat/oggparseogm. c) can cause a crash;
8. A deadlock can be triggered if an error occurs in the "ff_MPV_frame_start ()" function (libavcodec/mpegvideo. c;
9. An error in the "ff_hevc_decode_nal_sps ()" function (libavcodec/hevc_ps.c) may cause indirect reference by a null pointer;
10. An error occurs in the Sega Film format (CPK) separator (libavformat/segafilm. c), which may cause memory leakage;
11. The error in decoding H.264 monochrome encoded files may result in out-of-bounds memory access;
12. The "avpriv_adx_decode_header ()" function (libavcodec/adx. c) has an integer overflow error, which can cause a crash;
13. An error occurs in the "decode_nal_units ()" function (libavcodec/h264.c), which may result in out-of-bounds memory access;
14. The error in the "frame_worker_thread ()" function (libavcodec/pthread_frame.c) may cause memory leakage;
15. An error occurred while parsing h264 encoded files by sps, which may cause memory read out-of-bounds through mismatched luma/chroma bits;
16. An error occurs in the "execute_decode_slices ()" function (libavcodec/h264.c), which may cause out-of-bounds memory reading;
<* Source: Mateusz "j00ru" Jurczyk
Gynvael Coldwind
Link: http://secunia.com/advisories/56352/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
FFmpeg
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://ffmpeg.org/security.html
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = 21a2fb7e0579703fdea96f659498ef8b1f243289
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = e630ca4241077fa8adc972fe8a3d7e2b3e8dc91f
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = 165f96cd2d687122748f862a0bc6e9908fe3d5d2
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = 459db54251807ba26162db7b67ac1ff444cc0fa9
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = d5128fce38646d3f64c55feda42084888ba0e87e
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = 9a026c72982faf20e1c8dfbe48f0b312cdea69c8
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = 75647dea6f7db79b409bad66a119f5c73da730f3
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = feded990e3ef9af4a0b827d5b6d8fe86f0b94942
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = d66bab0a69ac1860e78dd951ad8db1a507e75642
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = 6892d145a0c80249bd61ee7dd31ec851c5076bcd
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = a03a642d5ceb5f2f7c6ebbf56ff365dfbcdb65eb
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = 5366146d48f06564e8fa393424782cceed510416
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = 58312b2472d3a44d7458865c459d59ef2e02bf1a
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = 9cbf2d78f0a9c19129e7a70b2281a1_d1_c6d9
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = bfd26b7ce6efea594f2b99441d900419df3af638
Http://git.videolan.org /? P = ffmpeg. git; a = commit; h = 9eef9eb3014b2ed9c3ff4aac510a9f04edb555cf
FFmpeg details: click here
FFmpeg: click here
Recommended reading:
Compile FFmpeg in Linux to download and compile the source file
Linux compiling and upgrading FFmpeg
Install FFMPEG on CentOS 5.6
Install FFmpeg in Ubuntu