+++ This bug was initially created as a clone of Bug #231831 +++ CVE-2008-3162 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3162): Stack-based buffer overflow in the str_read_packet function in libavformat/psxstr.c in FFmpeg before r13993 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted STR file that interleaves audio and video sectors.
Created attachment 160415 [details, diff] mplayer-1.0_rc2_p26753-CVE-2008-3162.patch
mplayer-1.0_rc2_p27725 in the tree
(In reply to comment #2) > mplayer-1.0_rc2_p27725 in the tree > Some ~arch keywords are missing, is that intentional?
(In reply to comment #3) > (In reply to comment #2) > > mplayer-1.0_rc2_p27725 in the tree > > > > Some ~arch keywords are missing, is that intentional? > No, that was a bit of a keyword snafoo on my part. See bug 241110
Stabling is handled in bug 239130.
request filed
GLSA 200901-07. Thanks everyone, sorry about the delay.