thr3ads.net - Secure testing team - [Secure-testing-team] Bug#646937: CVE-2011-3625: Buffer overflow in SAMI parsing [Oct 2011]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Mehdi Dogguy

2011-Oct-28 13:20 UTC

[Secure-testing-team] Bug#646937: CVE-2011-3625: Buffer overflow in SAMI parsing

Package: mplayer2
Version: 2.0-134-g84d8671-8
Severity: grave
Tags: security
Justification: user security hole

Please see:
http://www.openwall.com/lists/oss-security/2011/10/14/1
http://labs.mwrinfosecurity.com/files/Advisories/mwri_mplayer-sami-subtitles_2011-08-12.pdf

Fix:
http://git.mplayer2.org/mplayer2/commit/?id=27b88a09c5319deb62221b8cd0ecc14cd1136e4a

Regards,

-- 
Mehdi


-- System Information:
Debian Release: 6.0.3
  APT prefers stable
  APT policy: (990, ''stable''), (500,
''stable-updates''), (500, ''proposed-updates'')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Secure testing team - Oct 2011 - Bug#646937: CVE-2011-3625: Buffer overflow in SAMI parsing

[Secure-testing-team] Bug#646937: CVE-2011-3625: Buffer overflow in SAMI parsing