Mandriva Linux Security Advisory : ffmpeg (MDVSA-2009:335)
Medium Nessus Plugin ID 43362
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA vulnerability was discovered and corrected in ffmpeg :
MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated by lol-ffplay.ogm, different vectors than CVE-2007-6718 (CVE-2008-4610).
Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers
This update provides a solution to this vulnerability.
SolutionUpdate the affected packages.