A vulnerability exists when handling RealText that can result in a heap overflow.
Upgrade to realplayer-10.0.5 and helixplayer-1.0.5 is necessary.
It doesn't seems to be released yet (also if Real's security advisory states
Ok committed 1.0.5 and 10.0.5. Little problem: I can't test helixplayer here
as it's x86-only so I dropped the keywords until someone can test it.
x86 please test and mark
x86 testing: see above comment.
x86/someone please test and mark stable ASAP.
Tested realplayer-10.0.5 and marked stable on x86 on request from jaervosz.
Thx everyone, ready for GLSA