CVE-2011-1931 Information

Description

sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2 as used in VideoLAN VLC media player 1.1.9 and earlier and other products performs a write operation outside the bounds of an unspecified array which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a malformed AMV file.

Reference

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=624339 http://git.videolan.org/?p=ffmpeg.git;a=commit;h=89f903b3d5ec38c9c5d90fba7e626fa0eda61a32 http://securityreason.com/securityalert/8299 http://www.securityfocus.com/archive/1/517706 http://www.securityfocus.com/bid/47602