Debian Security Advisory DSA 992-1 - Simon Kilvington discovered that specially crafted PNG images can trigger a heap overflow in libavcodec, the multimedia library of ffmpeg, which may lead to the execution of arbitrary code.
653c2e73640e4c3c42b47c4be68817e08f1ddc12dcfc56b51abb34017d12d988
Ubuntu Security Notice USN-230-1 - Simon Kilvington discovered a buffer overflow in the avcodec_default_get_buffer() function of the ffmpeg library. By tricking an user into opening a malicious movie which contains specially crafted PNG images, this could be exploited to execute arbitrary code with the user's privileges.
b80943c261371e1d737af6d134e09523ffd5802941ba4dc837e952cce27b7468