MPlayer sdpplin_parse()函数RTSP整数溢出漏洞

BUGTRAQ ID: 28851 CVECAN ID: CVE-2008-1558 MPlayer是一款基于Linux的媒体播放程序，支持多种媒体格式。 MPlayer的stream/realrtsp/sdpplin.c文件中的sdpplinparse函数存在整数溢出漏洞： sdpplinparsestream desc-streamid=atoibuf; spplinparse desc-streamstream-streamid=stream; 如果用户所打开的媒体文件中包含有超长的StreamCount SDP参数的话，就可以触发这个溢出，导致执行任意指令。 MPlayer 1....

DSA-921-1 kernel-source-2.4.27 - several

Bulletin has no description...

[SECURITY] new version of procmail with security fixes

A new version of procmail has been released which fixes a couple of buffer overflows and has extra security checks. We recommend you upgrade your procmail package immediately. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.1 alias slink...

[SECURITY] New versions of netstd fixes root exploit in rpc.mountd

Description ----------- The Program rpc.mountd is a mount daemon that handles NFS mounts. The version as shipped with current distributions of Linux contains a buffer overflow. Impact ------ The overflow can be used as part of an attack to gain root access on the machine acting NFS server. We...

[SECURITY] New versions of Mutt fixes buffer overflow

We have received a report from Paul Boehm stating that Mutt has an overflowable buffer in parse.c. When sending malicious mail you can execute arbitary code on the mutt running users system. We recommend you upgrade your Mutt package immediately. dpkg -i file.deb will install the referenced file...