Upstream information

CVE-2007-1246 at MITRE

Description

The DMO_VideoDecoder_Open function in loader/dmo/DMO_VideoDecoder.c in MPlayer 1.0rc1 and earlier, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote attackers to cause a buffer overflow and possibly execute arbitrary code, a different vulnerability than CVE-2007-1387.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 7.6
Vector AV:N/AC:H/Au:N/C:C/I:C/A:C
Access Vector Network
Access Complexity High
Authentication None
Confidentiality Impact Complete
Integrity Impact Complete
Availability Impact Complete
SUSE Bugzilla entry: 254374 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
Novell Linux Desktop 9 for x86
SLES SDK 9 for IBM S/390 and IBM zSeries
SLES SDK 9 for x86
  • xine-lib >= 0.99.rc3a-106.38
core9.s390
sles9-nld.x86
ZYPP Patch Nr: 2988
Novell Linux Desktop 9 for x86_64
SLES SDK 9 for X86-64
  • xine-lib >= 0.99.rc3a-106.38
  • xine-lib-32bit >= 9-200703221214
core9.s390
sles9-nld.x86
ZYPP Patch Nr: 2988
SLES SDK 9 for IPF
  • xine-lib >= 0.99.rc3a-106.38
  • xine-lib-x86 >= 9-200703221211
core9.s390
sles9-nld.x86
ZYPP Patch Nr: 2988
SLES SDK 9 for IBM iSeries and IBM pSeries
  • xine-lib >= 0.99.rc3a-106.38
  • xine-lib-64bit >= 9-200703221205
core9.s390
sles9-nld.x86
ZYPP Patch Nr: 2988
SLES SDK 9 for IBM zSeries
  • xine-lib >= 0.99.rc3a-106.38
  • xine-lib-32bit >= 9-200703221150
core9.s390
sles9-nld.x86
ZYPP Patch Nr: 2988
SUSE LINUX 10.0
  • xine-lib >= 1.1.0-0.3
  • xine-lib-32bit >= 1.1.0-0.3
  • xine-lib-64bit >= 1.1.0-0.3
SUSE LINUX 10.1
  • xine-lib >= 1.1.1-24.20
  • xine-lib-32bit >= 1.1.1-24.20
  • xine-lib-64bit >= 1.1.1-24.20
SUSE LINUX 9.3
  • xine-lib >= 1.0-10.16
  • xine-lib-32bit >= 9.3-7.7
SuSE Linux Desktop 1.0
  • MPlayer >= 0.90rc4-269
Builds