[MPlayer-dev-eng] [SECURITY] heap-based buffer overflow in libmpdemux/aviheader.c - fixed in SVN already?
Dominik 'Rathann' Mierzejewski
dominik at rangers.eu.org
Sun Sep 23 22:28:27 CEST 2007
On Saturday, 22 September 2007 at 13:46, Reimar Döffinger wrote:
> Hello,
> On Sat, Sep 22, 2007 at 12:48:48PM +0200, Dominik 'Rathann' Mierzejewski wrote:
> > Am I correct in thinking that r24447 fixes that?
> >
> > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4938
> >
> > If what they say here:
> > http://www.vulnhunt.com/advisories/CAL-20070912-1_Multiple_vendor_produce_handling_AVI_file_vulnerabilities.txt
> > ...
> > DISCLOSURE TIMELINE:
> > ====================
> > 1: 2007-07-30 notice MPlayer vendor
> > 2: 2007-07-31 the vendor reply
> > ...
> >
> > is true, then why was the fix committed only 8 days ago?
>
> Because I was hoping that despite their inability to spell they would
> get their act together and explain why they think this is a security
> issue (I don't count NULL dereference as such in MPlayer for now) in
> MPlayer and not a libc problem that has been known for years and they
> are recycling now.
[...]
I see. So this is mostly a storm in a glass of water. Thanks for the
explanation.
Regards,
R.
--
MPlayer developer and RPMs maintainer: http://mplayerhq.hu http://rpm.livna.org
There should be a science of discontent. People need hard times and
oppression to develop psychic muscles.
-- from "Collected Sayings of Muad'Dib" by the Princess Irulan
More information about the MPlayer-dev-eng
mailing list