[CVE-2009-0385] arbitrary code excecution via NULL pointer dereference
Bug #731625 reported by
Firas Kraïem
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
mplayer (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Hardy |
Fix Released
|
Low
|
Firas Kraïem |
Bug Description
Binary package hint: mplayer
Integer signedness error in the fourxm_read_header function in
libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers
to execute arbitrary code via a malformed 4X movie file with a large
current_track value, which triggers a NULL pointer dereference.
Only Hardy is affected.
CVE References
visibility: | private → public |
To post a comment you must log in.
Attached debdiff fixes the issue (patch copied from the ffmpeg package).