DescriptionArray index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.
Overall state of this security issue: Resolved
This issue is currently rated as having important severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SR:2008:006, published Fri, 14 Mar 2008 15:00:00 +0000
List of released packages
|Product(s)||Fixed package version(s)||References|
|SUSE Linux Enterprise Desktop 11 SP4 |
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP4
SUSE Linux Enterprise Software Development Kit 11 SP4
| ||Patchnames: |
SUSE Linux Enterprise Software Development Kit 11 SP4 GA libxine-devel-1.1.15-23.3.9
SUSE Timeline for this CVECVE page created: Fri Jun 28 02:39:44 2013
CVE page last modified: Fri Oct 7 12:45:40 2022