CVE-2008-5616
Published: 17 December 2008
Stack-based buffer overflow in the demux_open_vqf function in libmpdemux/demux_vqf.c in MPlayer 1.0 rc2 before r28150 allows remote attackers to execute arbitrary code via a malformed TwinVQ file.
Priority
Status
Package | Release | Status |
---|---|---|
mplayer Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
gutsy |
Ignored
(end of life, was needed)
|
|
hardy |
Ignored
(end of life)
|
|
intrepid |
Ignored
(end of life, was needed)
|
|
jaunty |
Ignored
(end of life)
|
|
karmic |
Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
|
|
lucid |
Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
|
|
maverick |
Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
|
|
natty |
Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
|
|
oneiric |
Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
|
|
upstream |
Released
(1.0~rc2-19)
|