View previous topic :: View next topic |
Author |
Message |
h0bbes n00b
Joined: 25 Aug 2003 Posts: 1
|
|
Back to top |
|
|
jondkent Apprentice
Joined: 26 Jul 2002 Posts: 289 Location: London
|
Posted: Fri Sep 26, 2003 12:40 pm Post subject: |
|
|
Well, not too bad an expolit and avoidable until the next version is in portage
Jon |
|
Back to top |
|
|
Wedge_ Advocate
Joined: 08 Aug 2002 Posts: 3614 Location: Scotland
|
Posted: Fri Sep 26, 2003 12:42 pm Post subject: |
|
|
There's a 1.0-pre version in portage, although it's ~x86. _________________ Per Ardua Ad Astra
The Earth is the cradle of the mind, but we cannot live forever in a cradle - Konstantin E. Tsiolkovsky
Gentoo Radeon FAQ |
|
Back to top |
|
|
dh3rm3 Tux's lil' helper
Joined: 26 Aug 2003 Posts: 101
|
Posted: Fri Sep 26, 2003 3:21 pm Post subject: |
|
|
Quote: | Description:
A remotely exploitable buffer overflow vulnerability was found in MPlayer. A malicious host can craft a harmful ASX header, and trick MPlayer into executing arbitrary code upon parsing that header.
MPlayer versions affected:
MPlayer 0.90pre series
MPlayer 0.90rc series
MPlayer 0.90
MPlayer 0.91
MPlayer 1.0pre1
MPlayer versions unaffected:
MPlayer releases before 0.90pre1
MPlayer 0.92
MPlayer HEAD CVS |
MPlayer 1.0pre1 also has the buffer overflow vulnerability...
either get patch, 0.92 or cvs version _________________ dh3rm3's place |
|
Back to top |
|
|
|