SUSE CVE-2008-0486

Array index vulnerability in libmpdemux/demuxaudio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow...

Mandriva Update for mplayer MDVSA-2008:045 (mplayer)

Check for the Version of mplayer OpenVAS Vulnerability Test Mandriva Update for mplayer MDVSA-2008:045 mplayer Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

Fedora Update for xine-lib FEDORA-2008-1543

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Design/Logic Flaw

MPlayer, possibly 1.0rc1, allows remote attackers to cause a denial of service SIGSEGV and application crash via 1 a malformed MP3 file, as demonstrated by lol-mplayer.mp3; 2 a malformed Ogg Vorbis file, as demonstrated by lol-mplayer.ogg; 3 a malformed MPEG-1 file, as demonstrated by...

Gentoo Security Advisory GLSA 200803-16 (mplayer)

The remote host is missing updates announced in advisory GLSA 200803-16. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200803-16 (mplayer)

The remote host is missing updates announced in advisory GLSA 200803-16. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200802-12 (xine-lib)

The remote host is missing updates announced in advisory GLSA 200802-12. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1536-1 (xine-lib)

The remote host is missing an update to xine-lib announced via advisory DSA 1536-1. OpenVAS Vulnerability Test $Id: deb15361.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1536-1 xine-lib Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Debian DSA-1536-1 : libxine - several vulnerabilities

Several local vulnerabilities have been discovered in Xine, a media player library, allowed for a denial of service or arbitrary code execution, which could be exploited through viewing malicious content. The Common Vulnerabilities and Exposures project identifies the following problems : -...

[SECURITY] [DSA 1536-1] New libxine packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1536-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 31, 2008 http://www.debian.org/security/faq -...

[ MDVSA-2008:046 ] - Updated xine-lib package fixes arbitrary code execution vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2008:046 http://www.mandriva.com/security/ Package : xine-lib Date : February 15, 2008 Affected: 2007.1, 2008.0 Problem Description: An array index vulnerability found in the FLAC audio demuxer might allow remote...

Debian: Security Advisory (DSA-1496-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1496-1 (mplayer)

The remote host is missing an update to mplayer announced via advisory DSA 1496-1. OpenVAS Vulnerability Test $Id: deb14961.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1496-1 mplayer Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

MPlayer demux_audio.c远程栈溢出漏洞

BUGTRAQ ID: 27441 CVECAN ID: CVE-2008-0486 MPlayer是一款基于Linux的媒体播放程序，支持多种媒体格式。 MPlayer的libmpdemux/demuxaudio.c文件在解析FLAC标注时存在栈溢出漏洞： /----------- libmpdemux/demuxaudio.c 206 case FLACVORBISCOMMENT: 207 208 / For a description of the format please have a look at / 209 /...

Debian DSA-1496-1 : mplayer - buffer overflows

Several buffer overflows have been discovered in the MPlayer movie player, which might lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0485 Felipe Manzano and Anibal Sacco discovered a buffer overflow in the...

[SECURITY] [DSA 1496-1] New mplayer packages fix arbitrary code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1496-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 12, 2008 http://www.debian.org/security/faq -...

DSA-1496-1 mplayer - arbitrary code execution

Bulletin has no description...

CVE-2008-0486

Array index vulnerability in libmpdemux/demuxaudio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow...

CVE-2008-0486

Array index vulnerability in libmpdemux/demuxaudio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow...

CVE-2008-0486

Summary (CVE-2008-0486): An array index vulnerability in the FLAC tag handling of MPlayer’s demuxer (libmpdemux/demux_audio.c) could allow remote code execution via a crafted FLAC tag. Affected: MPlayer 1.0rc2 and SVN builds prior to r25917, and, due to code similarity, some xine-lib integrations...