Ubuntu
mplayer package

Branches for Gutsy

Name Status Last Modified Last Commit
lp:ubuntu/gutsy/mplayer 1 Development 2009-08-19 00:21:40 UTC
31. 01_default_config.dpatch: Fix typo th...

Author: Laurent Bigonville
Revision Date: 2007-10-13 14:28:11 UTC

01_default_config.dpatch: Fix typo that prevent the screensaver to be
disabled (LP: #152080)
lp:ubuntu/gutsy-backports/mplayer 1 Development 2009-08-19 00:22:22 UTC
32. Automated backport upload; no source ...

Author: John Dong
Revision Date: 2007-11-19 06:38:08 UTC

Automated backport upload; no source changes.
lp:ubuntu/gutsy-security/mplayer 1 Development 2009-08-19 00:21:54 UTC
34. * SECURITY UPDATE: Multiple integer u...

Author: Stefan Lesicnik
Revision Date: 2008-10-10 20:55:42 UTC

* SECURITY UPDATE: Multiple integer underflows in MPlayer 1.0_rc2 and
  earlier allow remote attackers to cause a denial of service
  (process termination) and possibly execute arbitrary code via a
  crafted video file that causes the stream_read function to read or
  write arbitrary memory (LP: #279030)
  - libmpdemux/demux_real.c: Address various integer underflows. Patch
    from oCert.org.
  - http://www.ocert.org/advisories/ocert-2008-013.html
  - CVE-2008-3827
* SECURITY UPDATE: Uncontrolled array index in the sdpplin_parse function in
  stream/realrtsp/sdpplin.c in MPlayer 1.0 rc2 allows remote attackers to
  overwrite memory and execute arbitrary code via a large streamid SDP
  parameter. (LP: #212601).
  - Cherrypicked rev 80 from lp:~ubuntu-dev/mplayer/ubuntu (William Grant)
    stream/realrtsp/sdpplin.c: Properly check the stream ID. Patch from
    upstream.
  - CVE-2008-1558
lp:ubuntu/gutsy-updates/mplayer bug 1 Development 2009-08-19 00:24:24 UTC
34. * SECURITY UPDATE: Multiple integer u...

Author: Stefan Lesicnik
Revision Date: 2008-10-10 20:55:42 UTC

* SECURITY UPDATE: Multiple integer underflows in MPlayer 1.0_rc2 and
  earlier allow remote attackers to cause a denial of service
  (process termination) and possibly execute arbitrary code via a
  crafted video file that causes the stream_read function to read or
  write arbitrary memory (LP: #279030)
  - libmpdemux/demux_real.c: Address various integer underflows. Patch
    from oCert.org.
  - http://www.ocert.org/advisories/ocert-2008-013.html
  - CVE-2008-3827
* SECURITY UPDATE: Uncontrolled array index in the sdpplin_parse function in
  stream/realrtsp/sdpplin.c in MPlayer 1.0 rc2 allows remote attackers to
  overwrite memory and execute arbitrary code via a large streamid SDP
  parameter. (LP: #212601).
  - Cherrypicked rev 80 from lp:~ubuntu-dev/mplayer/ubuntu (William Grant)
    stream/realrtsp/sdpplin.c: Properly check the stream ID. Patch from
    upstream.
  - CVE-2008-1558
14 of 4 results FirstPreviousNextLast