Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 83801

Summary: media-video/realplayer + realone: WAV and SMIL File Handling Buffer Overflows
Product: Gentoo Security Reporter: Jean-François Brunette (RETIRED) <formula7>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: enhancement    
Priority: High    
Version: unspecified   
Hardware: All   
OS: All   
URL: http://secunia.com/advisories/14456/
Whiteboard: [masked]
Package list:
Runtime testing required: ---

Description Jean-François Brunette (RETIRED) gentoo-dev 2005-03-02 04:52:00 UTC 
Description:
Two vulnerabilities have been reported in various RealNetworks products, which can be exploited by malicious people to compromise a user's system.

1) A boundary error within the processing of WAV files can be exploited to cause a buffer overflow via a specially crafted WAV file.

2) A boundary error within the processing of SMIL files can be exploited to cause a stack-based buffer overflow via a specially crafted SMIL file.

Successful exploitation of the vulnerabilities allows execution of arbitrary code.

Solution:
Apply patches.

Linux Players:
RealPlayer 10:
http://www.real.com/linux

Original Advisory:
RealNetworks:
http://service.real.com/help/faq/security/050224_player/EN/

iDEFENSE:
http://www.idefense.com/applicat...?id=209&type=vulnerabilities
Comment 1 Thierry Carrez (RETIRED) gentoo-dev 2005-03-03 02:50:51 UTC 
Realplayer is already masked due to multiple security problems.
Comment 2 Thierry Carrez (RETIRED) gentoo-dev 2005-04-10 10:50:27 UTC 
Fixed by unmasking/release of 10.0.3