|
MPlayer RTSP Server Line Response Remote Buffer Overflow Vulnerability
Solution: The vendor has released a patch dealing with this issue. Mandriva has released security announcement MDKSA-2005:115 addressing this issue. Please see the referenced advisory for details on obtaining and applying the appropriate updates. SuSE has released advisory SUSE-SR:2005:013 and fixes for this issue. Fixes can be obtained through the SuSE FTP server or by using the YaST Online Update. Ubuntu Linux has released fixes and an advisory (USN-123-1) to address this and another vulnerability. Please see the referenced advisory for further information. Peachtree Linux has released fixes and an advisory (PLSN-0003) to address this and another vulnerability. Please see the referenced advisory for further information. xine has released fixes and an advisory (XSA-2004-8) to address this and another vulnerability. Patches are also available at the following location: http://cvs.sourceforge.net/viewcvs.py/xine/xine-lib/src/input/librtsp/rtsp.c?r1=1.18&r2=1.19&diff_format=u http://cvs.sourceforge.net/viewcvs.py/xine/xine-lib/src/input/mms.c?r1=1.55&r2=1.56&diff_format=u Please see the referenced advisory for further information. Gentoo Linux has released an advisory (GLSA 200504-19) dealing with this issue. Gentoo advises that all users upgrade their packages by executing the following commands with superuser privileges: emerge --sync emerge --ask --oneshot --verbose ">=media-video/mplayer-1.0_pre6-r4" For more information, please see the referenced Gentoo Linux advisory. Gentoo Linux has released an advisory (GLSA 200504-27) dealing with this issue for xine-lib. Gentoo advises that all xine-lib users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose media-libs/xine-lib SuSE has released advisory SUSE-SR:2005:012 confirming that SuSE Linux products are vulnerable to this issue. Fixes are pending. Slackware Linux has released advisory SSA:2005-121-02 to address this issue. Please see the referenced advisory for further information. Turbolinux has released advisory TLSA-2005-65 to address this issue. Please see the referenced advisory for more information. xine xine 1-rc5
MPlayer MPlayer 1.0 pre3
MPlayer MPlayer 1.0 pre5try2
MPlayer MPlayer 1.0 pre5try1
MPlayer MPlayer 1.0 pre4
xine xine 1.0
MPlayer MPlayer 1.0 pre5
MPlayer MPlayer 1.0 pre6
|
|
|
Privacy Statement |
