CVE-2022-38600 (https://trac.mplayerhq.hu/ticket/2390#comment:2): Mplayer SVN-r38374-13.0.1 is vulnerable to Memory Leak via vf.c and vf_vo.c. CVE-2022-38850 (https://trac.mplayerhq.hu/ticket/2399): The MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide By Zero via the function config () of llibmpcodecs/vf_scale.c. CVE-2022-38851 (https://trac.mplayerhq.hu/ticket/2393): Certain The MPlayer Project products are vulnerable to Out-of-bounds Read via function read_meta_record() of mplayer/libmpdemux/asfheader.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. CVE-2022-38855 (https://trac.mplayerhq.hu/ticket/2392): Certain The MPlayer Project products are vulnerable to Buffer Overflow via function gen_sh_video () of mplayer/libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. CVE-2022-38856 (https://trac.mplayerhq.hu/ticket/2395): Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. CVE-2022-38858 (https://trac.mplayerhq.hu/ticket/2396): Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. CVE-2022-38860 (https://trac.mplayerhq.hu/ticket/2402): Certain The MPlayer Project products are vulnerable to Divide By Zero via function demux_open_avi() of libmpdemux/demux_avi.c which affects mencoder. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. CVE-2022-38861 (https://trac.mplayerhq.hu/ticket/2407): The MPlayer Project mplayer SVN-r38374-13.0.1 is vulnerable to memory corruption via function free_mp_image() of libmpcodecs/mp_image.c. CVE-2022-38862 (https://trac.mplayerhq.hu/ticket/2404): Certain The MPlayer Project products are vulnerable to Buffer Overflow via function play() of libaf/af.c:639. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. CVE-2022-38863 (https://trac.mplayerhq.hu/ticket/2405): Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mp_getbits() of libmpdemux/mpeg_hdr.c which affects mencoder and mplayer. This affects mecoder SVN-r38374-13.0.1 and mplayer SVN-r38374-13.0.1. CVE-2022-38864 (https://trac.mplayerhq.hu/ticket/2406): Certain The MPlayer Project products are vulnerable to Buffer Overflow via the function mp_unescape03() of libmpdemux/mpeg_hdr.c. This affects mencoder SVN-r38374-13.0.1 and mplayer SVN-r38374-13.0.1. CVE-2022-38865 (https://trac.mplayerhq.hu/ticket/2401): Certain The MPlayer Project products are vulnerable to Divide By Zero via the function demux_avi_read_packet of libmpdemux/demux_avi.c. This affects mplyer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. CVE-2022-38866 (https://trac.mplayerhq.hu/ticket/2403#comment:2): Certain The MPlayer Project products are vulnerable to Buffer Overflow via read_avi_header() of libmpdemux/aviheader.c . This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. CVE-2022-38853 (https://trac.mplayerhq.hu/ticket/2398): Certain The MPlayer Project products are vulnerable to Buffer Overflow via function asf_init_audio_stream() of libmpdemux/asfheader.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1. All of the issues seem to be patched in the last few months, but given the last release was in 202202, I presume they're unreleased.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=8cdb49a98ff943afe53695735fb3eed4b77c3b28 commit 8cdb49a98ff943afe53695735fb3eed4b77c3b28 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-12-24 10:16:46 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-12-24 10:19:57 +0000 media-video/mplayer: add 1.5 Unclear if anything happened with security bug #858107 though. Bug: https://bugs.gentoo.org/858107 Bug: https://bugs.gentoo.org/870406 Closes: https://bugs.gentoo.org/728640 Closes: https://bugs.gentoo.org/836428 Closes: https://bugs.gentoo.org/870649 Closes: https://bugs.gentoo.org/888073 Signed-off-by: Sam James <sam@gentoo.org> media-video/mplayer/Manifest | 1 + media-video/mplayer/mplayer-1.5.ebuild | 627 ++++++++++++++++++++++++++++++++ media-video/mplayer/mplayer-9999.ebuild | 378 ++++++++++--------- 3 files changed, 829 insertions(+), 177 deletions(-)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=01bb8d66a7c9c9d907a861a9608ca71329d9706a commit 01bb8d66a7c9c9d907a861a9608ca71329d9706a Author: John Helmert III <ajak@gentoo.org> AuthorDate: 2023-01-13 19:56:16 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2023-01-13 20:00:48 +0000 media-video/mplayer: drop 1.4-r1 Bug: https://bugs.gentoo.org/870406 Signed-off-by: John Helmert III <ajak@gentoo.org> media-video/mplayer/Manifest | 2 - media-video/mplayer/files/ffmpeg44.patch | 12 - .../mplayer/files/mplayer-1.3-CVE-2016-4352.patch | 24 - .../mplayer/files/mplayer-1.4-riscv-support.patch | 14 - media-video/mplayer/mplayer-1.4-r1.ebuild | 609 --------------------- 5 files changed, 661 deletions(-)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=1d6c03b70ff79ff0b4c819818e45732721765ad6 commit 1d6c03b70ff79ff0b4c819818e45732721765ad6 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2024-05-04 07:42:15 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2024-05-04 07:42:38 +0000 [ GLSA 202405-05 ] MPlayer: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/870406 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202405-05.xml | 55 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 55 insertions(+)