OpenBSD VuXML: Documenting security issues in the OpenBSD Ports & Packages Collection

mplayer -- multiple overflow vulnerabilites

Affected packages
mplayer < 1.0pre5try2
mplayer-no_x11 < 1.0pre5try2
mplayer-sdl < 1.0pre5try2

Details

VuXML ID 4a667f60-5468-11d9-a47f-00065bd5b0b6
Discovery 2004-12-16
Entry 2004-12-22

iDEFENSE, Ariel Berkman and the MPlayer development team found multiple vulnerabilities in MPlayer. These include potential heap overflows in Real RTSP and pnm streaming code, stack overflows in MMST streaming code and multiple buffer overflows in BMP demuxer and mp3lib code.

References

URL http://tigger.uic.edu/~jlongs2/holes/mplayer.txt
URL http://www.idefense.com/application/poi/display?id=166&type=vulnerabilities
URL http://www.idefense.com/application/poi/display?id=167&type=vulnerabilities
URL http://www.idefense.com/application/poi/display?id=168&type=vulnerabilities

Copyright © 2003-2005 Jacques Vidrine, Robert Nagy, and contributors.
Please see the source of this document for full copyright information.