Candidate: CVE-2008-3827
PublicDate: 2008-09-29 19:25:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3827
Description:
 Multiple integer underflows in the Real demuxer (demux_real.c) in MPlayer
 1.0_rc2 and earlier allow remote attackers to cause a denial of service
 (process termination) and possibly execute arbitrary code via a crafted
 video file that causes the stream_read function to read or write arbitrary
 memory.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/mplayer/+bug/279030
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_mplayer:
upstream_mplayer: needs-triage
dapper_mplayer: released (2:0.99+1.0pre7try2+cvs20060117-0ubuntu8.3)
feisty_mplayer: needs-triage (reached end-of-life)
gutsy_mplayer: released (2:1.0~rc1-0ubuntu13.3)
hardy_mplayer: released (2:1.0~rc2-0ubuntu13.1)
intrepid_mplayer: not-affected (2:1.0~rc2-0ubuntu17)
devel_mplayer: not-affected