Libav: Multiple vulnerabilities

Libav: Multiple vulnerabilities Multiple vulnerabilities have been found in Libav, allowing attackers to execute arbitrary code or cause Denial of Service. libav 2014-06-26 2014-06-26 439052 452202 470734 remote 0.8.7 0.8.7

Libav is a complete solution to record, convert and stream audio and video.

Multiple vulnerabilities have been discovered in Libav. Please review the CVE identifiers referenced below for details.

A remote attacker could entice a user to open a specially crafted media file in an application linked against Libav, possibly resulting in execution of arbitrary code with the privileges of the application or a Denial of Service condition.

There is no known workaround at this time.

All Libav users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=media-video/libav-0.8.7"

Packages which depend on this library may need to be recompiled. Tools such as revdep-rebuild may assist in identifying these packages.

CVE-2012-2772 CVE-2012-2775 CVE-2012-2776 CVE-2012-2777 CVE-2012-2779 CVE-2012-2783 CVE-2012-2784 CVE-2012-2786 CVE-2012-2787 CVE-2012-2788 CVE-2012-2789 CVE-2012-2790 CVE-2012-2791 CVE-2012-2793 CVE-2012-2794 CVE-2012-2796 CVE-2012-2797 CVE-2012-2798 CVE-2012-2800 CVE-2012-2801 CVE-2012-2802 CVE-2012-2803 CVE-2012-2804 CVE-2012-5144 ackle ackle