|
RealNetworks RealPlayer Enterprise RAM File Parsing Buffer Overflow Vulnerability
Solution: The vendor has released a fix to address this vulnerability: SuSE Linux has made advisory SUSE-SA:2005:026 available along with fixes dealing with this issue. RedHat Fedora has released and advisory FEDORA-2005-330 dealing with this issue. Please see the reference section for more information. Red Hat has released advisories RHSA-2005:363-09 and RHSA-2005:392-06 dealing with this issue in their RealPlayer and Helix Player packages respectively along with fixes to address this issue on Red Hat Linux Enterprise platforms. Customers who are affected by this issue are advised to apply the appropriate updates. Customers subscribed to the Red Hat Network may apply the appropriate fixes using the Red Hat Update Agent (up2date). Please see referenced advisory for additional information. Gentoo has released advisory GLSA 200504-21 to address this issue. Gentoo fixes may be applied by running the following commands as the superuser: emerge --sync emerge --ask --oneshot --verbose ">=media-video/helixplayer-1.0.4" Real Networks RealPlayer Enterprise
Real Networks Helix Player for Linux 1.0.1
Real Networks RealPlayer Enterprise 1.1
Real Networks RealPlayer Enterprise 1.2
Real Networks RealPlayer Enterprise 1.5
Real Networks RealPlayer Enterprise 1.6
Real Networks RealPlayer Enterprise 1.7
Real Networks RealPlayer 10.0
Real Networks RealPlayer For Unix 10.0.3
|
|
 Privacy Statement |
