CVE-2008-4869

NameCVE-2008-4869
DescriptionFFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers to cause a denial of service (memory consumption) via unknown vectors, aka a "Tcp/udp memory leak."
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severityhigh
Debian Bugs504977

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
kino (PTS)stretch1.3.4-2.2fixed
sid, buster1.3.4+dfsg0-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
ffmpeg-debiansource(unstable)0.svn20080206-15unimportant504977
gstreamer0.10-ffmpegsource(unstable)0.10.3-2
kinosourceetch(not affected)
kinosource(unstable)1.0.0-1

Notes

A regular bug, but hardly a security issue
[etch] - kino <not-affected> (Does not ship ffmpeg)

Search for package or bug name: Reporting problems