[ubuntu/hardy-security] mplayer (delayed), mplayer 2:1.0~rc2-0ubuntu13.2 (Accepted)

Ubuntu Installer archive at ubuntu.com
Thu Mar 10 00:04:19 UTC 2011 

mplayer (2:1.0~rc2-0ubuntu13.2) hardy-security; urgency=low

  * SECURITY UPDATE: Integer signedness error in the fourxm_read_header
    function in libavformat/4xm.c in FFmpeg before revision 16846 allows
    remote attackers to execute arbitrary code via a malformed 4X movie
    file with a large current_track value, which triggers a NULL pointer
    dereference. (LP: #731625)
    - libavformat/4xm.c - patch from ffmpeg package in hardy-security
    - References:
      + CVE-2009-0385

Date: Tue, 08 Mar 2011 22:53:14 +0100
Changed-By: Firas Kraiem <firas at fkraiem.org>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/mplayer/2:1.0~rc2-0ubuntu13.2
-------------- next part --------------
Format: 1.7
Date: Tue, 08 Mar 2011 22:53:14 +0100
Source: mplayer
Binary: mplayer mplayer-nogui mencoder mplayer-doc
Architecture: source
Version: 2:1.0~rc2-0ubuntu13.2
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Firas Kraiem <firas at fkraiem.org>
Description: 
 mencoder   - MPlayer's Movie Encoder
 mplayer    - The Ultimate Movie Player For Linux
 mplayer-doc - The Ultimate Movie Player For Linux (Documentation)
 mplayer-nogui - The Ultimate Movie Player For Linux
Launchpad-Bugs-Fixed: 731625
Changes: 
 mplayer (2:1.0~rc2-0ubuntu13.2) hardy-security; urgency=low
 .
   * SECURITY UPDATE: Integer signedness error in the fourxm_read_header
     function in libavformat/4xm.c in FFmpeg before revision 16846 allows
     remote attackers to execute arbitrary code via a malformed 4X movie
     file with a large current_track value, which triggers a NULL pointer
     dereference. (LP: #731625)
     - libavformat/4xm.c - patch from ffmpeg package in hardy-security
     - References:
       + CVE-2009-0385
Files: 
 6d02f11076d52a933b5485eb130dbb16 2399 graphics extra mplayer_1.0~rc2-0ubuntu13.2.dsc
 92e2c8ecda1b82348a36f90d97827290 20917 graphics extra mplayer_1.0~rc2-0ubuntu13.2.diff.gz
Original-Maintainer: Ubuntu MOTU Media Team <motumedia at tauware.de>

More information about the Hardy-changes mailing list