ubuntu · CVE-2012-6616

Quick triage

Priority: medium Published: 2013-12-24 20:55:00 UTC Updated: 2025-07-14 13:22:08 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2012-6616 medium priority: Ubuntu including 7 source packages (chromium-browser, ffmpeg, …), 112 status rows across 16 suites (bionic, focal, groovy, hirsute, impish, jammy, kinetic, lunar, mantic, noble, oracular, plucky, questing, trusty, upstream, xenial): DNE 35, not-affected 28, ignored 24, needs-triage 23, released 2.

Description:

The mov_text_decode_frame function in libavcodec/movtextdec.c in FFmpeg before 1.0.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via crafted 3GPP TS 26.245 data.

cvelogic Threat Intelligence