[mplayer] Heap overflow causes potential arbitrary code execution
Bug #140891 reported by
disabled.user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kmplayer (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Dapper |
Invalid
|
Undecided
|
Unassigned | ||
Edgy |
Invalid
|
Undecided
|
Unassigned | ||
Feisty |
Invalid
|
Undecided
|
Unassigned | ||
Gutsy |
Invalid
|
Undecided
|
Unassigned | ||
Hardy |
Invalid
|
Undecided
|
Unassigned | ||
mplayer (Debian) |
Fix Released
|
Unknown
|
|||
mplayer (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Dapper |
Invalid
|
Medium
|
Unassigned | ||
Edgy |
Fix Released
|
Medium
|
William Grant | ||
Feisty |
Fix Released
|
Medium
|
William Grant | ||
Gutsy |
Fix Released
|
Medium
|
William Grant | ||
Hardy |
Fix Released
|
Medium
|
Unassigned |
Bug Description
Binary package hint: mplayer
Quote:
"one heap overflow was discovered in MPlayer.[...]
Some D.o.S (raise 100% cpu ) were discovred in KMPlayer.
By tricking a user into opening a specially crafted media file,
an attacker who exploit heap overflow in MPlayer or media player classic
could potential execute arbitrary code with the user's privileges."
Affected versions:
- MPlayer 1.0rc1 and prior
- KMPlayer v2.9.3.1210 and prior
Patch:
http://
CVE References
Changed in mplayer: | |
status: | Unknown → Fix Released |
Changed in mplayer: | |
status: | Fix Committed → Fix Released |
Changed in mplayer: | |
status: | Incomplete → Invalid |
To post a comment you must log in.
Thanks for the report! We will get fixes published shortly.