[CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service
Bug #279030 reported by
Stefan Lesicnik
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
mplayer (Ubuntu) |
Fix Released
|
Medium
|
Stefan Lesicnik | ||
Dapper |
Fix Released
|
Medium
|
Stefan Lesicnik | ||
Gutsy |
Fix Released
|
Medium
|
Stefan Lesicnik | ||
Hardy |
Fix Released
|
Medium
|
Stefan Lesicnik | ||
Intrepid |
Fix Released
|
Medium
|
Stefan Lesicnik |
Bug Description
Binary package hint: mplayer
Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service (process termination) and possibly execute arbitrary code via a crafted video file that causes the stream_read function to read or write arbitrary memory.
Changed in mplayer: | |
assignee: | nobody → stefanlsd |
status: | New → In Progress |
Changed in mplayer: | |
status: | New → In Progress |
Changed in mplayer: | |
assignee: | nobody → stefanlsd |
status: | Incomplete → In Progress |
assignee: | nobody → stefanlsd |
status: | New → In Progress |
Changed in mplayer: | |
status: | In Progress → Fix Committed |
importance: | Undecided → Medium |
status: | In Progress → Fix Committed |
importance: | Undecided → Medium |
status: | In Progress → Fix Committed |
importance: | Undecided → Medium |
importance: | Undecided → Medium |
importance: | Undecided → Medium |
Changed in mplayer: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
This bug was fixed in the package mplayer - 2:1.0~rc2-0ubuntu17
--------------- rc2-0ubuntu17) intrepid; urgency=low
mplayer (2:1.0~
* SECURITY UPDATE: Multiple integer underflows in MPlayer 1.0_rc2 and demux_real. c - patch from oCert. www.ocert. org/advisories/ ocert-2008- 013.html
earlier allow remote attackers to cause a denial of service
(process termination) and possibly execute arbitrary code via a
crafted video file that causes the stream_read function to read or
write arbitrary memory. (LP: #279030)
- libmpdemux/
- References:
+ CVE-2008-3827
+ http://
-- Stefan Lesicnik <email address hidden> Wed, 08 Oct 2008 07:51:18 +0200