CVE-2006-4799

NameCVE-2006-4799
DescriptionBuffer overflow in ffmpeg for xine-lib before 1.1.2 might allow context-dependent attackers to execute arbitrary code via a crafted AVI file and "bad indexes", a different vulnerability than CVE-2005-4048 and CVE-2006-2802.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-1215-1
Debian Bugs369876

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
xine-libsourcesarge1.0.1-1sarge4DSA-1215-1
xine-libsource(unstable)1.1.2-1medium369876

Notes

according to the changelog, libxine (starting from 1.1.2-4) links dynamically against ffmpeg
Search for package or bug name: Reporting problems