Vulnerability in ffmpeg < 0.8.3 May Cause Remote Code Execution
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3504
Affected:
- Alpine 2.2 (0.6.3)
- Alpine 2.1 (0.6.1)
Not affected:
- Alpine 2.3 (0.8.5)
- Edge (0.8.6)
Solutions:
- Patch: http://git.libav.org/?p=libav.git;a=commitdiff\_plain;h=77d2ef13a8fa630e5081f14bde3fd20f84c90aec
- Upgrade to 0.8.3
(from redmine: issue id 804, created on 2011-11-08, closed on 2011-11-22)
- Changesets:
- Revision be16fd28 by Natanael Copa on 2011-11-21T15:01:27Z:
main/ffmpeg: security fix (CVE-2011-3504)
ref #804
- Revision a81b5e5b by Natanael Copa on 2011-11-21T15:02:47Z:
main/ffmpeg: security fix (CVE-2011-3504)
fixes #804