CVE-2006-4800 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2006-4800 Interim 1 7 2023-12-09T02:17:13Z current 2021-05-30T12:36:47Z 2023-12-09T02:17:13Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2006-4800 Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is a different vulnerability than CVE-2005-4048 and CVE-2006-2802. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FKBSO4PEQKTHAFKXCWK4Z2GW5SVUYXGZ/#FKBSO4PEQKTHAFKXCWK4Z2GW5SVUYXGZ E-Mail link for SUSE-SA:2006:073 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 libxine-devel-1.1.15-23.3.9 libxine1-1.1.15-23.3.9 libxine1-32bit-1.1.15-23.3.9 libxine1-gnome-vfs-1.1.15-23.3.9 libxine1-pulse-1.1.15-23.3.9 libxine-devel-1.1.15-23.3.9 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libxine1-1.1.15-23.3.9 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libxine1-32bit-1.1.15-23.3.9 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libxine1-gnome-vfs-1.1.15-23.3.9 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libxine1-pulse-1.1.15-23.3.9 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is a different vulnerability than CVE-2005-4048 and CVE-2006-2802. CVE-2006-4800 SUSE Linux Enterprise Software Development Kit 11 SP4:libxine-devel-1.1.15-23.3.9 SUSE Linux Enterprise Software Development Kit 11 SP4:libxine1-1.1.15-23.3.9 SUSE Linux Enterprise Software Development Kit 11 SP4:libxine1-32bit-1.1.15-23.3.9 SUSE Linux Enterprise Software Development Kit 11 SP4:libxine1-gnome-vfs-1.1.15-23.3.9 SUSE Linux Enterprise Software Development Kit 11 SP4:libxine1-pulse-1.1.15-23.3.9 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P