CVE-2008-3827
Published: 29 September 2008
Multiple integer underflows in the Real demuxer (demux_real.c) in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service (process termination) and possibly execute arbitrary code via a crafted video file that causes the stream_read function to read or write arbitrary memory.
Priority
Status
Package | Release | Status |
---|---|---|
mplayer Launchpad, Ubuntu, Debian |
dapper |
Released
(2:0.99+1.0pre7try2+cvs20060117-0ubuntu8.3)
|
feisty |
Ignored
(end of life, was needs-triage)
|
|
gutsy |
Released
(2:1.0~rc1-0ubuntu13.3)
|
|
hardy |
Released
(2:1.0~rc2-0ubuntu13.1)
|
|
intrepid |
Not vulnerable
(2:1.0~rc2-0ubuntu17)
|
|
upstream |
Needs triage
|