GLSA-200903-33 : FFmpeg: Multiple vulnerabilities

critical Nessus Plugin ID 35969

Synopsis

The remote Gentoo host is missing one or more security-related patches.

Description

The remote host is affected by the vulnerability described in GLSA-200903-33 (FFmpeg: Multiple vulnerabilities)

Multiple vulnerabilities were found in FFmpeg:
astrange reported a stack-based buffer overflow in the str_read_packet() in libavformat/psxstr.c when processing .str files (CVE-2008-3162).
Multiple buffer overflows in libavformat/utils.c (CVE-2008-4866).
A buffer overflow in libavcodec/dca.c (CVE-2008-4867).
An unspecified vulnerability in the avcodec_close() function in libavcodec/utils.c (CVE-2008-4868).
Unspecified memory leaks (CVE-2008-4869).
Tobias Klein repoerted a NULL pointer dereference due to an integer signedness error in the fourxm_read_header() function in libavformat/4xm.c (CVE-2009-0385).
Impact :

A remote attacker could entice a user to open a specially crafted media file, possibly leading to the execution of arbitrary code with the privileges of the user running the application, or a Denial of Service.
Workaround :

There is no known workaround at this time.

Solution

All FFmpeg users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=media-video/ffmpeg-0.4.9_p20090201' All gst-plugins-ffmpeg users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=media-plugins/gst-plugins-ffmpeg-0.10.5' All Mplayer users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=media-video/mplayer-1.0_rc2_p28450'

See Also

https://security.gentoo.org/glsa/200903-33

Plugin Details

Severity: Critical

ID: 35969

File Name: gentoo_GLSA-200903-33.nasl

Version: 1.17

Type: local

Published: 3/20/2009

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:gentoo:linux:ffmpeg, p-cpe:/a:gentoo:linux:gst-plugins-ffmpeg, p-cpe:/a:gentoo:linux:mplayer, cpe:/o:gentoo:linux

Required KB Items: Host/local_checks_enabled, Host/Gentoo/release, Host/Gentoo/qpkg-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 3/19/2009

Reference Information

CVE: CVE-2008-3162, CVE-2008-4866, CVE-2008-4867, CVE-2008-4868, CVE-2008-4869, CVE-2009-0385

BID: 33502

CWE: 119, 189, 399

GLSA: 200903-33