blob: 8a507823e0844c41d75dc0d4e7a04b1c2fad0a97 [file] [log] [blame]
<?xml version="1.0" encoding="utf-8"?>
<glsa id="200702-11">
<title>MPlayer: Buffer overflow</title>
A buffer overflow was found in MPlayer's RTSP plugin that could lead to a
Denial of Service or arbitrary code execution.
<product type="ebuild">MPlayer</product>
<announced>February 27, 2007</announced>
<revised>February 27, 2007: 01</revised>
<package name="media-video/mplayer" auto="yes" arch="*">
<unaffected range="ge">1.0_rc1-r2</unaffected>
<vulnerable range="lt">1.0_rc1-r2</vulnerable>
MPlayer is a media player capable of playing multiple media formats.
When checking for matching asm rules in the asmrp.c code, the results
are stored in a fixed-size array without boundary checks which may
allow a buffer overflow.
<impact type="normal">
An attacker can entice a user to connect to a manipulated RTSP server
resulting in a Denial of Service and possibly execution of arbitrary
There is no known workaround at this time.
All MPlayer users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose &quot;&gt;=media-video/mplayer-1.0_rc1-r2&quot;</code>
<uri link="">Original Advisory</uri>
<uri link="">CVE-2006-6172</uri>
<metadata tag="requester" timestamp="Mon, 12 Feb 2007 12:10:45 +0000">
<metadata tag="submitter" timestamp="Tue, 13 Feb 2007 11:54:03 +0000">
<metadata tag="bugReady" timestamp="Tue, 13 Feb 2007 12:06:52 +0000">