CVE-2014-8544
Publication date 5 November 2014
Last updated 24 July 2024
Ubuntu priority
libavcodec/tiff.c in FFmpeg before 2.4.2 does not properly validate bits-per-pixel fields, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted TIFF data.
Status
Package | Ubuntu Release | Status |
---|---|---|
ffmpeg | 18.04 LTS bionic |
Not affected
|
16.04 LTS xenial |
Not affected
|
|
14.04 LTS trusty | Not in release | |
libav | 18.04 LTS bionic | Not in release |
16.04 LTS xenial | Not in release | |
14.04 LTS trusty |
Fixed 6:9.18-0ubuntu0.14.04.1
|
|
mplayer | 18.04 LTS bionic |
Not affected
|
16.04 LTS xenial |
Not affected
|
|
14.04 LTS trusty |
Not affected
|
|
Patch details
Package | Patch details |
---|---|
ffmpeg |
References
Related Ubuntu Security Notices (USN)
- USN-2534-1
- Libav vulnerabilities
- 17 March 2015