Launchpad.net

CVE 2007-2948

Multiple stack-based buffer overflows in stream/stream_cddb.c in MPlayer before 1.0rc1try3 allow remote attackers to execute arbitrary code via a CDDB entry with a long (1) album title or (2) category.

Related bugs and status

CVE-2007-2948 (Candidate) is related to these bugs:

Bug #118855: CVE-2007-2948: Stack overflow in mplayer cddb handling

		In	Importance	Status
118855	CVE-2007-2948: Stack overflow in mplayer cddb handling	mplayer (Ubuntu)	High	Fix Released
118855	CVE-2007-2948: Stack overflow in mplayer cddb handling	mplayer (Ubuntu Gutsy)	High	Fix Released
118855	CVE-2007-2948: Stack overflow in mplayer cddb handling	mplayer (Ubuntu Feisty)	High	Fix Released
118855	CVE-2007-2948: Stack overflow in mplayer cddb handling	mplayer (Ubuntu Edgy)	Undecided	Fix Released
118855	CVE-2007-2948: Stack overflow in mplayer cddb handling	mplayer (Ubuntu Dapper)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [MPlayer-announce] 200...
MISC: http://secunia.com/sec...
CONFIRM: http://www.mplayerhq.h...
BID: 24339
SECUNIA: 24302
DEBIAN: DSA-1313
SECUNIA: 25713
SECUNIA: 25940
GENTOO: GLSA-200707-07
SUSE: SUSE-SR:2007:014
SECUNIA: 26083
SECUNIA: 26207
MANDRIVA: MDKSA-2007:143
VUPEN: ADV-2007-2080
OSVDB: 36991
CONFIRM: http://svn.mplayerhq.h...
XF: mplayer-cddb-bo(34749)