subject:"\[Bug 279030\] Re\: \[CVE\-2008\-3827\] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service"

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2009-01-09 Thread Kees Cook

** Changed in: mplayer (Ubuntu Dapper) Status: Fix Committed => Fix Released -- [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service https://bugs.launchpad.net/bugs/279030 You received this bug notification because

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2009-01-08 Thread Launchpad Bug Tracker

This bug was fixed in the package mplayer - 2:1.0~rc2-0ubuntu13.1 --- mplayer (2:1.0~rc2-0ubuntu13.1) hardy-security; urgency=low * SECURITY UPDATE: Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service (process termin

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2009-01-08 Thread Launchpad Bug Tracker

This bug was fixed in the package mplayer - 2:1.0~rc1-0ubuntu13.3 --- mplayer (2:1.0~rc1-0ubuntu13.3) gutsy-security; urgency=low * SECURITY UPDATE: Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service (process termin

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2009-01-07 Thread Kees Cook

** Changed in: mplayer (Ubuntu Dapper) Status: In Progress => Fix Committed ** Changed in: mplayer (Ubuntu Dapper) Importance: Undecided => Medium ** Changed in: mplayer (Ubuntu Gutsy) Status: In Progress => Fix Committed ** Changed in: mplayer (Ubuntu Gutsy) Importance: Unde

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2009-01-07 Thread Kees Cook

Thanks for the patches and testing, I've uploaded these for building in the security queue, they should be published shortly. -- [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service https://bugs.launchpad.net/bugs/279030 Y

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-27 Thread Stefan Lesicnik

Hardy debdiff attached. Same codebase as Intrepid. ** Attachment added: "hardy-debdiff" http://launchpadlibrarian.net/18942788/hardy-debdiff ** Changed in: mplayer (Ubuntu Hardy) Assignee: (unassigned) => Stefan Lesicnik (stefanlsd) Status: New => In Progress -- [CVE-2008-3827] M

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-26 Thread Stefan Lesicnik

** Changed in: mplayer (Ubuntu Dapper) Assignee: (unassigned) => Stefan Lesicnik (stefanlsd) Status: Incomplete => In Progress ** Changed in: mplayer (Ubuntu Gutsy) Assignee: (unassigned) => Stefan Lesicnik (stefanlsd) Status: New => In Progress -- [CVE-2008-3827] Multipl

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-22 Thread Stefan Lesicnik

Cleaned debdiff for Dapper attached. I test built without the config.sub and config.guess changes and build was successful. ** Attachment removed: "debdiff" http://launchpadlibrarian.net/18424912/debdiff ** Attachment added: "dapper-debdiff" http://launchpadlibrarian.net/18797718/dapper-de

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-22 Thread Stefan Lesicnik

Gutsy Debdiff Attached ** Attachment added: "gutsy-debdiff" http://launchpadlibrarian.net/18795823/gutsy-debdiff -- [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service https://bugs.launchpad.net/bugs/279030 You receiv

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-17 Thread Stefan Lesicnik

Hi. I have uploaded the gutsy changes to bzr and I need to get the hardy mplayer bzr back up to upload my changes in there. -- [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service https://bugs.launchpad.net/bugs/279030 You

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-17 Thread Jamie Strandboge

Thanks Stefan! The dapper debdiff contains a lot of changes to autoconf files. Can you clean up the debdiff, test and resubmit and mark the bug back to In Progress? Are you planning to supply debdiffs for gutsy and hardy too? ** Changed in: mplayer (Ubuntu Dapper) Status: In Progress => Inc

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-14 Thread Stefan Lesicnik

** Changed in: mplayer (Ubuntu Dapper) Status: New => In Progress -- [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service https://bugs.launchpad.net/bugs/279030 You received this bug notification because you are a m

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-10 Thread Stefan Lesicnik

Dapper debdiff attached. Incorporated CVE-2008-1558 and CVE-2008-3827. Dapper is actually missing the realplayer codecs to test exploit against, but codebase is the same. ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2008-1558 ** Attachment added: "debdiff" http://launchpadl

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-09 Thread Stefan Lesicnik

Tested Gutsy mplayer-rc1 in Gutsy VM. mplayer worked as expected and no regressesion or problems were found. -- [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service https://bugs.launchpad.net/bugs/279030 You received this

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-08 Thread Stefan Lesicnik

This bug was tested against the publicly available POC in Intrepid / Hardy / Gutsy. In all cases the mplayer crashed. mplayer realmplayerPOC.rm MPlayer 1.0rc2-4.3.2 (C) 2000-2007 MPlayer Team CPU: Intel(R) Core(TM)2 Duo CPU T7500 @ 2.20GHz (Family: 6, Model: 15, Stepping: 11) CPUflags: MMX

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

2008-10-08 Thread Launchpad Bug Tracker

This bug was fixed in the package mplayer - 2:1.0~rc2-0ubuntu17 --- mplayer (2:1.0~rc2-0ubuntu17) intrepid; urgency=low * SECURITY UPDATE: Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service (process termination) and

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

[Bug 279030] Re: [CVE-2008-3827] Multiple integer underflows in MPlayer 1.0_rc2 and earlier allow remote attackers to cause a denial of service

16 matches

Site Navigation

Mail list logo

Footer information