Unrated severityNVD Advisory· Published Feb 2, 2009· Updated Jun 16, 2026
CVE-2009-0385
CVE-2009-0385
Description
Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:10:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:fedoraproject:fedora:10:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:9:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
22- secunia.com/advisories/33711nvdThird Party Advisory
- secunia.com/advisories/34296nvdThird Party Advisory
- secunia.com/advisories/34385nvdThird Party Advisory
- secunia.com/advisories/34712nvdThird Party Advisory
- secunia.com/advisories/34845nvdThird Party Advisory
- secunia.com/advisories/34905nvdThird Party Advisory
- security.gentoo.org/glsa/glsa-200903-33.xmlnvdThird Party Advisory
- www.debian.org/security/2009/dsa-1781nvdThird Party Advisory
- www.debian.org/security/2009/dsa-1782nvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdThird Party Advisory
- www.securityfocus.com/archive/1/500514/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/33502nvdThird Party AdvisoryVDB Entry
- www.trapkit.de/advisories/TKADV2009-004.txtnvdThird Party Advisory
- www.ubuntu.com/usn/USN-734-1nvdThird Party Advisory
- www.vupen.com/english/advisories/2009/0277nvdThird Party Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/48330nvdThird Party AdvisoryVDB Entry
- www.redhat.com/archives/fedora-package-announce/2009-April/msg00210.htmlnvdThird Party Advisory
- www.redhat.com/archives/fedora-package-announce/2009-April/msg00215.htmlnvdThird Party Advisory
- osvdb.org/51643nvdBroken Link
- svn.mplayerhq.hu/ffmpeg/trunk/libavformat/4xm.cnvdBroken Link
- svn.mplayerhq.hu/ffmpegnvdBroken Link
- git.ffmpeg.orgnvd
News mentions
0No linked articles in our index yet.