+++ This bug was initially created as a clone of Bug #231831 +++
Stack-based buffer overflow in the str_read_packet function in
libavformat/psxstr.c in FFmpeg before r13993 allows remote attackers to cause
a denial of service (application crash) or execute arbitrary code via a
crafted STR file that interleaves audio and video sectors.
Created attachment 160415 [details, diff]
mplayer-1.0_rc2_p27725 in the tree
(In reply to comment #2)
> mplayer-1.0_rc2_p27725 in the tree
Some ~arch keywords are missing, is that intentional?
(In reply to comment #3)
> (In reply to comment #2)
> > mplayer-1.0_rc2_p27725 in the tree
> Some ~arch keywords are missing, is that intentional?
No, that was a bit of a keyword snafoo on my part. See bug 241110
Stabling is handled in bug 239130.
GLSA 200901-07. Thanks everyone, sorry about the delay.