+++ This bug was initially created as a clone of Bug #257217 +++ From the advisory: FFmpeg contains a type conversion vulnerability while parsing malformed 4X movie files. The vulnerability may be exploited by a (remote) attacker to execute arbitrary code in the context of FFmpeg or an application using the FFmpeg library. Upstream has fixed this in svn r16846, i haven't found a release yet.
mplayer-1.0_rc2_p28450 in the tree
Arches, please test and mark stable: =media-video/mplayer-1.0_rc2_p28450 Target keywords : "alpha amd64 hppa ia64 ppc ppc64 sparc x86"
ppc64
amd64/x86 stable
Stable for HPPA.
Stable on alpha.
ia64/sparc stable
ppc stable
GLSA 200903-33