CVE-2012-5144
Publication date 12 December 2012
Last updated 24 July 2024
Ubuntu priority
Description
Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, do not properly perform AAC decoding, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via vectors related to "an off-by-one overwrite when switching to LTP profile from MAIN."
Status
| Package | Ubuntu Release | Status | 
|---|---|---|
| ffmpeg | ||
| chromium-browser | ||
| ffmpeg-extra | ||
| libav | ||
| libav-extra | ||
Notes
Patch details
| Package | Patch details | 
|---|---|
| libav | 
References
Related Ubuntu Security Notices (USN)
- USN-1705-1
- Libav vulnerabilities
- 28 January 2013