Opened 17 years ago

Closed 17 years ago

Last modified 8 years ago

#678 closed defect (fixed)

MPlayer-1.0pre3try2

Reported by: igor@… Owned by: blfs-book@…
Priority: high Milestone:
Component: BOOK Version: ~CVS
Severity: normal Keywords:
Cc:

Description

Vulnerability fix.

Severity: HIGH (if playing HTTP streaming content) LOW (if playing only normal files)

Description: A remotely exploitable buffer overflow vulnerability was found in MPlayer. A malicious host can craft a harmful HTTP header ("Location:"), and trick MPlayer into executing arbitrary code upon parsing that header.

Change History (2)

comment:1 by igor@…, 17 years ago

Resolution: fixed
Status: newclosed

comment:2 by bdubbs@…, 8 years ago

Milestone: old

Milestone old deleted

Note: See TracTickets for help on using tickets.