SWF file heap-based buffer overflow
Realplayer 11 was masked for testing. Never heard a peep though, so I just unmasked it.
(In reply to comment #1) > Realplayer 11 was masked for testing. Never heard a peep though, so I just > unmasked it. > Hi. reaplay and realplay.bin were not set executable. I had to chmod x them.
ping, video team.
(In reply to comment #2) > > Hi. reaplay and realplay.bin were not set executable. I had to chmod x them. > This is fixed. See Bug #233415. (In reply to comment #3) @rbu: What should we do?
is fixed. See Bug #233415. > > (In reply to comment #3) > @rbu: What should we do? > since the vulnerable version (0.10.9) had stable keywords, we'll need a fixed version with stable keywords too. Is realplayer-11.0.0.4028-r1 ready to go stable? If so, feel free to CC arches on this bug for stabilisation.
Please let us know whether you consider the ebuild ready for stabling.
Arches, please test and mark stable: =media-video/realplayer-11.0.0.4028-r1 Target keywords : "amd64 x86"
amd64/x86 stable, all arches done.
RealPlayer-11.0.0.4028-r1 wouldn't unpack: >>> Unpacking source... >>> Unpacking RealPlayer11GOLD.rpm to /var/tmp/portage/media-video/realplayer-11.0.0.4028-r1/work * * ERROR: media-video/realplayer-11.0.0.4028-r1 failed. * Call stack: * ebuild.sh, line 49: Called src_unpack * environment, line 2177: Called rpm_src_unpack * environment, line 2044: Called die * The specific snippet of code: * rpm_unpack ${DISTDIR}/${x} || die "${myfail}"; * The die message: * failure unpacking RealPlayer11GOLD.rpm * * If you need support, post the topmost build error, and the call stack if relevant. * A complete build log is located at '/var/log/portage/media-video:realplayer-11.0.0.4028-r1:20080825-232153.log'. * The ebuild environment file is located at '/var/tmp/portage/media-video/realplayer-11.0.0.4028-r1/temp/environment'. *
Matthew, please open a new bug for that and mark it as a blocker of this bug. Please attach the full build log, and your emerge --info.
Same problem here with rpm_unpack.
GLSA 200809-03
** (realplay.bin:18835): CRITICAL **: file superbufhscale.cpp: line 493 (void hx_superbuf_hscale_init(HXSuperbufHScale*)): assertion `superbuf_hscale->tile_graphics[HX_SUPERB_MODE_BG].pixbuf' failed ** (realplay.bin:18835): WARNING **: HXPlayer: Error 0x80004005: "A general error has occurred." This is what I see when running the stable 32-bit version on an amd64 machine. The same machine will run a 64-bit nightly build from helix, however. No one else seeing this?
(In reply to comment #13) > ** (realplay.bin:18835): CRITICAL **: file superbufhscale.cpp: line 499 ... Please, open new bug. This bug is fixed ;)