UBUNTU-CVE-2012-6618

Source
https://ubuntu.com/security/CVE-2012-6618
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2012/UBUNTU-CVE-2012-6618.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2012-6618
Upstream
Published
2013-12-24T20:55:00Z
Modified
2026-05-29T10:45:08.432978375Z
Severity
  • Ubuntu - low
Summary
[none]
Details

The avprobeinput_buffer function in libavformat/utils.c in FFmpeg before 1.0.2, when running with certain -probesize values, allows remote attackers to cause a denial of service (crash) via a crafted MP3 file, possibly related to frame size or lack of sufficient "frames to estimate rate."

References

Affected packages

Ubuntu:25.10
qtwebengine-opensource-src

Package

Name
qtwebengine-opensource-src
Purl
pkg:deb/ubuntu/qtwebengine-opensource-src?arch=source&distro=questing

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

5.*
5.15.18+dfsg-2
5.15.18+dfsg-2build1
5.15.19+dfsg-1
5.15.19+dfsg2-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libqt5pdf5",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "libqt5pdfwidgets5",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "libqt5webengine-data",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "libqt5webengine5",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "libqt5webenginecore5",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "libqt5webenginewidgets5",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "qml-module-qtquick-pdf",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "qml-module-qtwebengine",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "qt5-image-formats-plugin-pdf",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "qtpdf5-doc-html",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "qtpdf5-examples",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "qtwebengine5-dev-tools",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "qtwebengine5-doc-html",
            "binary_version": "5.15.19+dfsg2-1"
        },
        {
            "binary_name": "qtwebengine5-examples",
            "binary_version": "5.15.19+dfsg2-1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2012/UBUNTU-CVE-2012-6618.json"
Ubuntu:Pro:14.04:LTS
libav

Package

Name
libav
Purl
pkg:deb/ubuntu/libav?arch=source&distro=esm-infra-legacy%2Ftrusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

6:0.*
6:0.8.7-1ubuntu2
6:9.*
6:9.10-1ubuntu1
6:9.10-1ubuntu2
6:9.10-1ubuntu5
6:9.10-1ubuntu6
6:9.10-1ubuntu7
6:9.11-2ubuntu1
6:9.11-2ubuntu2
6:9.13-0ubuntu0.14.04.1
6:9.14-0ubuntu0.14.04.1
6:9.16-0ubuntu0.14.04.1
6:9.18-0ubuntu0.14.04.1
6:9.20-0ubuntu0.14.04.1
6:9.20-0ubuntu0.14.04.1+esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libav-tools",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavcodec-extra",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavcodec-extra-54",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavcodec54",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavdevice-extra-53",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavdevice53",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavfilter-extra-3",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavfilter3",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavformat-extra-54",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavformat54",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavresample1",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavutil-extra-52",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libavutil52",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libswscale-extra-2",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        },
        {
            "binary_name": "libswscale2",
            "binary_version": "6:9.20-0ubuntu0.14.04.1+esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2012/UBUNTU-CVE-2012-6618.json"
Ubuntu:Pro:18.04:LTS
qtwebengine-opensource-src

Package

Name
qtwebengine-opensource-src
Purl
pkg:deb/ubuntu/qtwebengine-opensource-src?arch=source&distro=esm-apps%2Fbionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

5.*
5.9.1+dfsg-4
5.9.1+dfsg-4ubuntu1
5.9.2+dfsg-2ubuntu1
5.9.3+dfsg-0ubuntu1
5.9.4+dfsg-0ubuntu1
5.9.5+dfsg-0ubuntu2
5.9.5+dfsg-0ubuntu2+esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libqt5webengine-data",
            "binary_version": "5.9.5+dfsg-0ubuntu2+esm1"
        },
        {
            "binary_name": "libqt5webengine5",
            "binary_version": "5.9.5+dfsg-0ubuntu2+esm1"
        },
        {
            "binary_name": "libqt5webenginecore5",
            "binary_version": "5.9.5+dfsg-0ubuntu2+esm1"
        },
        {
            "binary_name": "libqt5webenginewidgets5",
            "binary_version": "5.9.5+dfsg-0ubuntu2+esm1"
        },
        {
            "binary_name": "qml-module-qtwebengine",
            "binary_version": "5.9.5+dfsg-0ubuntu2+esm1"
        },
        {
            "binary_name": "qtwebengine5-dev-tools",
            "binary_version": "5.9.5+dfsg-0ubuntu2+esm1"
        },
        {
            "binary_name": "qtwebengine5-doc-html",
            "binary_version": "5.9.5+dfsg-0ubuntu2+esm1"
        },
        {
            "binary_name": "qtwebengine5-examples",
            "binary_version": "5.9.5+dfsg-0ubuntu2+esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2012/UBUNTU-CVE-2012-6618.json"
Ubuntu:Pro:20.04:LTS
qtwebengine-opensource-src

Package

Name
qtwebengine-opensource-src
Purl
pkg:deb/ubuntu/qtwebengine-opensource-src?arch=source&distro=esm-apps%2Ffocal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

5.*
5.12.4+dfsg-1ubuntu1
5.12.4+dfsg-1ubuntu3
5.12.5+dfsg-3ubuntu1
5.12.5+dfsg-6ubuntu2
5.12.5+dfsg-7
5.12.5+dfsg-7build1
5.12.8+dfsg-0ubuntu1
5.12.8+dfsg-0ubuntu1.1
5.12.8+dfsg-0ubuntu1.1+esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libqt5webengine-data",
            "binary_version": "5.12.8+dfsg-0ubuntu1.1+esm1"
        },
        {
            "binary_name": "libqt5webengine5",
            "binary_version": "5.12.8+dfsg-0ubuntu1.1+esm1"
        },
        {
            "binary_name": "libqt5webenginecore5",
            "binary_version": "5.12.8+dfsg-0ubuntu1.1+esm1"
        },
        {
            "binary_name": "libqt5webenginewidgets5",
            "binary_version": "5.12.8+dfsg-0ubuntu1.1+esm1"
        },
        {
            "binary_name": "qml-module-qtwebengine",
            "binary_version": "5.12.8+dfsg-0ubuntu1.1+esm1"
        },
        {
            "binary_name": "qtwebengine5-dev-tools",
            "binary_version": "5.12.8+dfsg-0ubuntu1.1+esm1"
        },
        {
            "binary_name": "qtwebengine5-doc-html",
            "binary_version": "5.12.8+dfsg-0ubuntu1.1+esm1"
        },
        {
            "binary_name": "qtwebengine5-examples",
            "binary_version": "5.12.8+dfsg-0ubuntu1.1+esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2012/UBUNTU-CVE-2012-6618.json"
Ubuntu:Pro:22.04:LTS
qtwebengine-opensource-src

Package

Name
qtwebengine-opensource-src
Purl
pkg:deb/ubuntu/qtwebengine-opensource-src?arch=source&distro=esm-apps%2Fjammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

5.*
5.15.6+dfsg-1
5.15.6+dfsg-2
5.15.7+dfsg-2
5.15.8+dfsg-1
5.15.8+dfsg-1build1
5.15.8+dfsg-1build2
5.15.8+dfsg-2
5.15.9+dfsg-1
5.15.9+dfsg-1ubuntu0.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libqt5pdf5",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5pdfwidgets5",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webengine-data",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webengine5",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webenginecore5",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webenginewidgets5",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "qml-module-qtquick-pdf",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "qml-module-qtwebengine",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "qt5-image-formats-plugin-pdf",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtpdf5-doc-html",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtpdf5-examples",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtwebengine5-dev-tools",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtwebengine5-doc-html",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtwebengine5-examples",
            "binary_version": "5.15.9+dfsg-1ubuntu0.1~esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2012/UBUNTU-CVE-2012-6618.json"
Ubuntu:Pro:24.04:LTS
qtwebengine-opensource-src

Package

Name
qtwebengine-opensource-src
Purl
pkg:deb/ubuntu/qtwebengine-opensource-src?arch=source&distro=esm-apps%2Fnoble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

5.*
5.15.15+dfsg-2
5.15.15+dfsg-2build2
5.15.15+dfsg-2ubuntu1
5.15.16+dfsg-1
5.15.16+dfsg-1ubuntu2
5.15.16+dfsg-1ubuntu4
5.15.16+dfsg-3
5.15.16+dfsg-3ubuntu0.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libqt5pdf5",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5pdfwidgets5",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webengine-data",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webengine5",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webenginecore5",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webenginewidgets5",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "qml-module-qtquick-pdf",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "qml-module-qtwebengine",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "qt5-image-formats-plugin-pdf",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtpdf5-doc-html",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtpdf5-examples",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtwebengine5-dev-tools",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtwebengine5-doc-html",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtwebengine5-examples",
            "binary_version": "5.15.16+dfsg-3ubuntu0.1~esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2012/UBUNTU-CVE-2012-6618.json"
Ubuntu:Pro:26.04:LTS
qtwebengine-opensource-src

Package

Name
qtwebengine-opensource-src
Purl
pkg:deb/ubuntu/qtwebengine-opensource-src?arch=source&distro=esm-apps%2Fresolute

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

5.*
5.15.19+dfsg2-1
5.15.19+dfsg2-1build1
5.15.19+dfsg2-2
5.15.19+dfsg2-3
5.15.19+dfsg2-4
5.15.19+dfsg2-4ubuntu0.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "libqt5webengine-data",
            "binary_version": "5.15.19+dfsg2-4ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webengine5",
            "binary_version": "5.15.19+dfsg2-4ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webenginecore5",
            "binary_version": "5.15.19+dfsg2-4ubuntu0.1~esm1"
        },
        {
            "binary_name": "libqt5webenginewidgets5",
            "binary_version": "5.15.19+dfsg2-4ubuntu0.1~esm1"
        },
        {
            "binary_name": "qml-module-qtwebengine",
            "binary_version": "5.15.19+dfsg2-4ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtwebengine5-dev-tools",
            "binary_version": "5.15.19+dfsg2-4ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtwebengine5-doc-html",
            "binary_version": "5.15.19+dfsg2-4ubuntu0.1~esm1"
        },
        {
            "binary_name": "qtwebengine5-examples",
            "binary_version": "5.15.19+dfsg2-4ubuntu0.1~esm1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2012/UBUNTU-CVE-2012-6618.json"