Mageia 9 MGASA-2024-0062 Critical: MPlayer Buffer Overflow Threat

mageia

March 15, 2024

The MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide By Zero via the function config () of llibmpcodecs/vf_scale.c

Summary

The MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide By Zero via the function config () of llibmpcodecs/vf_scale.c. (CVE-2022-38850) Certain The MPlayer Project products are vulnerable to Out-of-bounds Read via function read_meta_record() of mplayer/libmpdemux/asfheader.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. (CVE-2022-38851) Certain The MPlayer Project products are vulnerable to Buffer Overflow via function gen_sh_video () of mplayer/libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. (CVE-2022-38855) Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. (CVE-2022-38858) Certain The MPlayer Project products are vulnerable to Divide By Zero via function demux_open_avi() of libmpdemux/demux_avi.c which affects mencoder. This affects mplayer SVN-r3...

References

- https://bugs.mageia.org/show_bug.cgi?id=31360

- https://www.cve.org/CVERecord?id=CVE-2022-38850

- https://www.cve.org/CVERecord?id=CVE-2022-38851

- https://www.cve.org/CVERecord?id=CVE-2022-38855

- https://www.cve.org/CVERecord?id=CVE-2022-38858

- https://www.cve.org/CVERecord?id=CVE-2022-38860

- https://www.cve.org/CVERecord?id=CVE-2022-38861

- https://www.cve.org/CVERecord?id=CVE-2022-38863

- https://www.cve.org/CVERecord?id=CVE-2022-38864

- https://www.cve.org/CVERecord?id=CVE-2022-38865

- https://www.cve.org/CVERecord?id=CVE-2022-38866

Topics Covered

security advisory buffer overflow critical out-of-bounds read MPlayer Mageia divide by zero

Resolution

SRPMS

- 9/core/mplayer-1.5-12.1.mga9

- 9/tainted/mplayer-1.5-12.1.mga9.tainted

Severity

critical

Lowest

Low

Medium

High

Critical

Publication date: 15 Mar 2024

URL: https://advisories.mageia.org/MGASA-2024-0062.html

Type: security

CVE: CVE-2022-38850, CVE-2022-38851, CVE-2022-38855, CVE-2022-38858, CVE-2022-38860, CVE-2022-38861, CVE-2022-38863, CVE-2022-38864, CVE-2022-38865, CVE-2022-38866

Topics Covered

security advisory buffer overflow critical out-of-bounds read MPlayer Mageia divide by zero

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia 9 MGASA-2024-0062 Critical: MPlayer Buffer Overflow Threat

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia 9 MGASA-2024-0062 Critical: MPlayer Buffer Overflow Threat

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!