Description
Integer overflow in the demuxer function in libmpdemux/demux_gif.c in
Mplayer allows remote attackers to cause a denial of service (crash) via
large dimensions in a gif file.
Ubuntu-Description
It was discovered that MPlayer incorrectly handled certain gif files.
An attacker could possibly use this issue to cause a denial of service.
Assigned-to
mikesalvatore
Package
| Upstream: | released
(2:1.0~rc4.dfsg1+svn34540-1+deb7u2, 2:1.3.0-2)
|
| Ubuntu 18.04 LTS: | not-affected
(2:1.3.0-2)
|
| Ubuntu 14.04 ESM: | DNE
(trusty was released [2:1.1+dfsg1-0ubuntu3.1])
|
| Ubuntu 20.04 FIPS Compliant: | not-affected
(2:1.3.0-2)
|
Patches:
Updated: 2022-04-13 12:20:25 UTC (commit f411bd370d482ef4385c4e751d121a4055fbc009)