Use-after-free vulnerability in the matroskareadseek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers improper maintenance of tracks data.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "chromium-chromedriver": "40.0.2214.94-0ubuntu0.14.04.1.1068", "chromium-browser-dbg": "40.0.2214.94-0ubuntu0.14.04.1.1068", "chromium-codecs-ffmpeg-dbg": "40.0.2214.94-0ubuntu0.14.04.1.1068", "chromium-codecs-ffmpeg": "40.0.2214.94-0ubuntu0.14.04.1.1068", "chromium-browser": "40.0.2214.94-0ubuntu0.14.04.1.1068", "chromium-codecs-ffmpeg-extra-dbg": "40.0.2214.94-0ubuntu0.14.04.1.1068", "chromium-codecs-ffmpeg-extra": "40.0.2214.94-0ubuntu0.14.04.1.1068", "chromium-browser-l10n": "40.0.2214.94-0ubuntu0.14.04.1.1068", "chromium-chromedriver-dbg": "40.0.2214.94-0ubuntu0.14.04.1.1068" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libavutil-extra-52": "6:9.20-0ubuntu0.14.04.1", "libswscale-dev": "6:9.20-0ubuntu0.14.04.1", "libavcodec-extra-54-dbgsym": "6:9.20-0ubuntu0.14.04.1", "libavfilter-extra-3": "6:9.20-0ubuntu0.14.04.1", "libavdevice-dev": "6:9.20-0ubuntu0.14.04.1", "libavutil52-dbgsym": "6:9.20-0ubuntu0.14.04.1", "libavutil-dev": "6:9.20-0ubuntu0.14.04.1", "libavcodec54-dbgsym": "6:9.20-0ubuntu0.14.04.1", "libav-dbg": "6:9.20-0ubuntu0.14.04.1", "libavfilter3-dbgsym": "6:9.20-0ubuntu0.14.04.1", "libavdevice53-dbgsym": "6:9.20-0ubuntu0.14.04.1", "libavformat-extra-54": "6:9.20-0ubuntu0.14.04.1", "libav-doc": "6:9.20-0ubuntu0.14.04.1", "libavdevice-extra-53": "6:9.20-0ubuntu0.14.04.1", "libav-tools": "6:9.20-0ubuntu0.14.04.1", "libavcodec-extra": "6:9.20-0ubuntu0.14.04.1", "libswscale-extra-2": "6:9.20-0ubuntu0.14.04.1", "libavfilter3": "6:9.20-0ubuntu0.14.04.1", "libavresample-dev": "6:9.20-0ubuntu0.14.04.1", "libavresample1-dbgsym": "6:9.20-0ubuntu0.14.04.1", "libavdevice53": "6:9.20-0ubuntu0.14.04.1", "libavformat54-dbgsym": "6:9.20-0ubuntu0.14.04.1", "libavfilter-dev": "6:9.20-0ubuntu0.14.04.1", "libavformat-dev": "6:9.20-0ubuntu0.14.04.1", "libavcodec-extra-54": "6:9.20-0ubuntu0.14.04.1", "libavformat54": "6:9.20-0ubuntu0.14.04.1", "libswscale2": "6:9.20-0ubuntu0.14.04.1", "libavutil52": "6:9.20-0ubuntu0.14.04.1", "libav-tools-dbgsym": "6:9.20-0ubuntu0.14.04.1", "libavcodec-dev": "6:9.20-0ubuntu0.14.04.1", "libavresample1": "6:9.20-0ubuntu0.14.04.1", "libavcodec54": "6:9.20-0ubuntu0.14.04.1", "libswscale2-dbgsym": "6:9.20-0ubuntu0.14.04.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "oxideqt-codecs-dbg": "1.4.2-0ubuntu0.14.04.1", "oxideqt-chromedriver": "1.4.2-0ubuntu0.14.04.1", "oxideqt-codecs-extra": "1.4.2-0ubuntu0.14.04.1", "oxideqt-dbg": "1.4.2-0ubuntu0.14.04.1", "liboxideqt-qmlplugin": "1.4.2-0ubuntu0.14.04.1", "oxideqmlscene": "1.4.2-0ubuntu0.14.04.1", "oxideqt-codecs": "1.4.2-0ubuntu0.14.04.1", "liboxideqtquick0": "1.4.2-0ubuntu0.14.04.1", "liboxideqtcore0": "1.4.2-0ubuntu0.14.04.1", "oxideqt-codecs-extra-dbg": "1.4.2-0ubuntu0.14.04.1" } ] }