CVE-2007-1246

Priority
Description
The DMO_VideoDecoder_Open function in loader/dmo/DMO_VideoDecoder.c in
MPlayer 1.0rc1 and earlier, as used in xine-lib, does not set the biSize
before use in a memcpy, which allows user-assisted remote attackers to
cause a buffer overflow and possibly execute arbitrary code, a different
vulnerability than CVE-2007-1387.
Assigned-to
fujitsu
Notes
Package
Upstream:released
Package
Upstream:needs-triage
More Information

Updated: 2020-07-28 19:29:06 UTC (commit d26b6ca9f5b3adb89bb036ce73ae7dab894935ec)