SecuritySpace - CVE-2011-3952

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2011-3952

Description: The decode_init function in kmvc.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large palette size in a KMVC encoded file.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2011-3952
Debian Security Information: DSA-2494 (Google Search)
http://www.debian.org/security/2012/dsa-2494
http://www.ubuntu.com/usn/USN-1479-1

CVE ID:	CVE-2011-3952
Description:	The decode_init function in kmvc.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large palette size in a KMVC encoded file.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2011-3952 Debian Security Information: DSA-2494 (Google Search) http://www.debian.org/security/2012/dsa-2494 http://www.ubuntu.com/usn/USN-1479-1