Public bug reported:
Binary package hint: mplayer
Buffer overflow in the asmrp_eval function in the RealMedia RTSP stream
handler (asmrp.c) for Real Media input plugin, as used in (1) xine/xine-
lib, (2) MPlayer 1.0rc1 and earlier, and possibly others, allows remote
attackers to cause a denial of service and possibly execute arbitrary
code via a rulebook with a large number of rulematches.
Feisty was fixed in 2:1.0~rc1-0ubuntu1, so only Dapper and Edgy are
vulnerable.
** Affects: mplayer (Ubuntu)
Importance: Undecided
Assignee: William Grant (fujitsu)
Status: Fix Released
** Affects: mplayer (Ubuntu Dapper)
Importance: Undecided
Assignee: William Grant (fujitsu)
Status: In Progress
** Affects: mplayer (Ubuntu Edgy)
Importance: Undecided
Assignee: William Grant (fujitsu)
Status: In Progress
** Visibility changed to: Public
** Changed in: mplayer (Ubuntu)
Assignee: (unassigned) => William Grant (fujitsu)
Status: New => Fix Released
** Changed in: mplayer (Ubuntu Dapper)
Assignee: (unassigned) => William Grant (fujitsu)
Status: New => In Progress
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2006-6172
** Changed in: mplayer (Ubuntu Edgy)
Assignee: (unassigned) => William Grant (fujitsu)
Status: New => In Progress
--
CVE-2006-6172: Buffer overflow in asmrp.c
https://bugs.launchpad.net/bugs/163291
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
