PublicDate: 2008-02-06 21:00:00 UTC
Candidate: CVE-2008-0630
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0630
Description:
 Buffer overflow in url.c in MPlayer 1.0rc2 and SVN before r25823 allows
 remote attackers to execute arbitrary code via a crafted URL that prevents
 the IPv6 parsing code from setting a pointer to NULL, which causes the
 buffer to be reused by the unescape code.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/mplayer/+bug/191488
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_mplayer:
 vendor: http://www.debian.org/security/2008/dsa-1496
 other: https://bugs.launchpad.net/ubuntu/+source/mplayer/+bug/191488
upstream_mplayer: needed
dapper_mplayer: released (2:0.99+1.0pre7try2+cvs20060117-0ubuntu8.2)
edgy_mplayer: released (2:0.99+1.0pre8-0ubuntu8.3)
feisty_mplayer: released (2:1.0~rc1-0ubuntu9.3)
gutsy_mplayer: released (2:1.0~rc1-0ubuntu13.2)
devel_mplayer: released (2:1.0~rc2-0ubuntu9)