Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2008-4610

MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated by lol-ffplay.ogm, different vectors than CVE-2007-6718.

Related bugs and status

CVE-2008-4610 (Candidate) is related to these bugs:

Bug #323620: ffmpeg vulnerability in 4xm demuxer

Summary				In	Importance	Status
	323620	ffmpeg vulnerability in 4xm demuxer		ffmpeg (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2008100...
UBUNTU: USN-734-1
SECUNIA: 34296