Your submission was sent successfully! Close

CVE-2008-5616

Published: 17 December 2008

Stack-based buffer overflow in the demux_open_vqf function in libmpdemux/demux_vqf.c in MPlayer 1.0 rc2 before r28150 allows remote attackers to execute arbitrary code via a malformed TwinVQ file.

Priority

Medium

Status

Package Release Status
mplayer
Launchpad, Ubuntu, Debian
dapper Ignored
(reached end-of-life)
gutsy Needed
(reached end-of-life)
hardy Ignored
(reached end-of-life)
intrepid Needed
(reached end-of-life)
jaunty Ignored
(reached end-of-life)
karmic Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
lucid Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
maverick Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
natty Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
oneiric Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
precise Not vulnerable
(2:1.0~rc3+svn20090426-1ubuntu4)
upstream
Released (1.0~rc2-19)