CVE-2011-1196

Publication date 10 March 2011

Last updated 24 July 2024

Ubuntu priority

Low

Why this priority?

The OGG container implementation in Google Chrome before 10.0.648.127 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.

Read the notes from the security team

Status

Package Ubuntu Release Status
chromium-browser 11.10 oneiric
Fixed 10.0.648.127~r76697-0ubuntu1
11.04 natty
Fixed 10.0.648.127~r76697-0ubuntu1
10.10 maverick
Fixed 10.0.648.127~r76697-0ubuntu0.10.10.1
10.04 LTS lucid
Fixed 10.0.648.127~r76697-0ubuntu0.10.04.1
9.10 karmic Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
ffmpeg 11.10 oneiric Not in release
11.04 natty Not in release
10.10 maverick
Fixed 4:0.6-2ubuntu6.2
10.04 LTS lucid
Not affected
8.04 LTS hardy Ignored end of life
ffmpeg-extra 11.10 oneiric Not in release
11.04 natty Not in release
10.10 maverick
Fixed 4:0.6-2ubuntu3.3
10.04 LTS lucid
Not affected
8.04 LTS hardy Not in release
libav 11.10 oneiric
Not affected
11.04 natty
Fixed 4:0.6.2-1ubuntu1.1
10.10 maverick Not in release
10.04 LTS lucid Not in release
9.10 karmic Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release
libav-extra 11.10 oneiric
Not affected
11.04 natty
Fixed 4:0.6.4-1ubuntu1
10.10 maverick Not in release
10.04 LTS lucid Not in release
9.10 karmic Not in release
8.04 LTS hardy Not in release
6.06 LTS dapper Not in release

Notes

mdeslaur

doesn't seem to affect 0.5.x

References

Related Ubuntu Security Notices (USN)

    • USN-1209-1
    • FFmpeg vulnerabilities
    • 19 September 2011
    • USN-1209-2
    • Libav vulnerabilities
    • 19 September 2011

Other references