The movreaddref function in libavformat/mov.c in Libav before 11.7 and FFmpeg before 0.11 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via the entries value in a dref box in an MP4 file.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "libavutil-extra-52": "6:9.20-0ubuntu0.14.04.1+esm1", "libswscale-dev": "6:9.20-0ubuntu0.14.04.1+esm1", "libavcodec-extra-54-dbgsym": "6:9.20-0ubuntu0.14.04.1+esm1", "libavfilter-extra-3": "6:9.20-0ubuntu0.14.04.1+esm1", "libavdevice-dev": "6:9.20-0ubuntu0.14.04.1+esm1", "libavutil52-dbgsym": "6:9.20-0ubuntu0.14.04.1+esm1", "libavutil-dev": "6:9.20-0ubuntu0.14.04.1+esm1", "libavcodec54-dbgsym": "6:9.20-0ubuntu0.14.04.1+esm1", "libav-dbg": "6:9.20-0ubuntu0.14.04.1+esm1", "libavfilter3-dbgsym": "6:9.20-0ubuntu0.14.04.1+esm1", "libavdevice53-dbgsym": "6:9.20-0ubuntu0.14.04.1+esm1", "libavformat-extra-54": "6:9.20-0ubuntu0.14.04.1+esm1", "libav-doc": "6:9.20-0ubuntu0.14.04.1+esm1", "libavdevice-extra-53": "6:9.20-0ubuntu0.14.04.1+esm1", "libav-tools": "6:9.20-0ubuntu0.14.04.1+esm1", "libavcodec-extra": "6:9.20-0ubuntu0.14.04.1+esm1", "libswscale-extra-2": "6:9.20-0ubuntu0.14.04.1+esm1", "libavfilter3": "6:9.20-0ubuntu0.14.04.1+esm1", "libavresample-dev": "6:9.20-0ubuntu0.14.04.1+esm1", "libavresample1-dbgsym": "6:9.20-0ubuntu0.14.04.1+esm1", "libavdevice53": "6:9.20-0ubuntu0.14.04.1+esm1", "libavformat54-dbgsym": "6:9.20-0ubuntu0.14.04.1+esm1", "libavfilter-dev": "6:9.20-0ubuntu0.14.04.1+esm1", "libavformat-dev": "6:9.20-0ubuntu0.14.04.1+esm1", "libavcodec-extra-54": "6:9.20-0ubuntu0.14.04.1+esm1", "libavformat54": "6:9.20-0ubuntu0.14.04.1+esm1", "libswscale2": "6:9.20-0ubuntu0.14.04.1+esm1", "libavutil52": "6:9.20-0ubuntu0.14.04.1+esm1", "libav-tools-dbgsym": "6:9.20-0ubuntu0.14.04.1+esm1", "libavcodec-dev": "6:9.20-0ubuntu0.14.04.1+esm1", "libavresample1": "6:9.20-0ubuntu0.14.04.1+esm1", "libavcodec54": "6:9.20-0ubuntu0.14.04.1+esm1", "libswscale2-dbgsym": "6:9.20-0ubuntu0.14.04.1+esm1" } ] }