Your submission was sent successfully! Close

CVE-2006-6172

Published: 30 November 2006

Buffer overflow in the asmrp_eval function in the RealMedia RTSP stream handler (asmrp.c) for Real Media input plugin, as used in (1) xine/xine-lib, (2) MPlayer 1.0rc1 and earlier, and possibly others, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a rulebook with a large number of rulematches.

Priority

Medium

Status

Package Release Status
mplayer
Launchpad, Ubuntu, Debian
dapper
Released (2:0.99+1.0pre7try2+cvs20060117-0ubuntu8.1)
edgy
Released (2:0.99+1.0pre8-0ubuntu8.2)
feisty Not vulnerable

gutsy Not vulnerable

upstream
Released (1.0rc1try2)
xine-lib
Launchpad, Ubuntu, Debian
dapper
Released (1.1.1+ubuntu2-7.7)
edgy
Released (1.1.2+repacked1-0ubuntu3.4)
feisty Not vulnerable

gutsy Not vulnerable

upstream
Released (1.1.3)