MidnightBSD

Advisories for mplayerhq

CVE-2010-3429 MEDIUM

flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
mplayerhq mplayer 0.92
ffmpeg ffmpeg 0.4.2
mplayerhq mplayer *
mplayerhq mplayer 0.06
mplayerhq mplayer 0.90
mplayerhq mplayer 0.07
ffmpeg ffmpeg *
ffmpeg ffmpeg 0.3.2
ffmpeg ffmpeg 0.4.0
ffmpeg ffmpeg 0.4.7
mplayerhq mplayer 0.02
mplayerhq mplayer 0.91
ffmpeg ffmpeg 0.4.8
mplayerhq mplayer 0.50
ffmpeg ffmpeg 0.4.3
ffmpeg ffmpeg 0.4.9
mplayerhq mplayer 0.18
ffmpeg ffmpeg 0.4.4
mplayerhq mplayer 0.05
ffmpeg ffmpeg 0.3.4
mplayerhq mplayer 0.09
ffmpeg ffmpeg 0.3.1
mplayerhq mplayer 0.17a_idegcounter
mplayerhq mplayer 1.0
mplayerhq mplayer 0.60
ffmpeg ffmpeg 0.4.6
mplayerhq mplayer 0.08
ffmpeg libavcodec *
ffmpeg ffmpeg 0.5
mplayerhq mplayer 0.10
mplayerhq mplayer 0.92.1
ffmpeg ffmpeg 0.3
ffmpeg ffmpeg 0.3.3
mplayerhq mplayer 0.93
mplayerhq mplayer 0.11
mplayerhq mplayer 0.17_idegcounter
mplayerhq mplayer 0.01
ffmpeg ffmpeg 0.4.5
CVE-2010-3908 MEDIUM

FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a malformed WMV file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
ffmpeg ffmpeg 0.4.4
ffmpeg ffmpeg 0.3.4
ffmpeg ffmpeg 0.4.2
mplayerhq mplayer *
ffmpeg ffmpeg 0.3.1
ffmpeg ffmpeg 0.4.6
ffmpeg ffmpeg *
ffmpeg ffmpeg 0.3.2
ffmpeg ffmpeg 0.4.0
ffmpeg ffmpeg 0.5
ffmpeg ffmpeg 0.4.7
ffmpeg ffmpeg 0.3
ffmpeg ffmpeg 0.3.3
ffmpeg ffmpeg 0.5.1
ffmpeg ffmpeg 0.5.2
ffmpeg ffmpeg 0.4.8
ffmpeg ffmpeg 0.4.3
ffmpeg ffmpeg 0.4.5
ffmpeg ffmpeg 0.4.9
CVE-2011-0722 MEDIUM

FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a malformed RealMedia file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
ffmpeg ffmpeg 0.4.4
ffmpeg ffmpeg 0.3.4
ffmpeg ffmpeg 0.4.2
mplayerhq mplayer *
ffmpeg ffmpeg 0.3.1
ffmpeg ffmpeg 0.4.6
ffmpeg ffmpeg *
ffmpeg ffmpeg 0.3.2
ffmpeg ffmpeg 0.4.0
ffmpeg ffmpeg 0.5
ffmpeg ffmpeg 0.4.7
ffmpeg ffmpeg 0.3
ffmpeg ffmpeg 0.3.3
ffmpeg ffmpeg 0.5.1
ffmpeg ffmpeg 0.5.2
ffmpeg ffmpeg 0.4.8
ffmpeg ffmpeg 0.4.3
ffmpeg ffmpeg 0.4.5
ffmpeg ffmpeg 0.4.9
CVE-2011-2160 HIGH

The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restrict read operations, which allows remote attackers to have an unspecified impact via a crafted VC-1 file, a related issue to CVE-2011-0723.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
ffmpeg ffmpeg 0.4.4
ffmpeg ffmpeg 0.3.4
ffmpeg ffmpeg 0.4.2
mplayerhq mplayer *
ffmpeg ffmpeg 0.3.1
ffmpeg ffmpeg 0.4.6
ffmpeg ffmpeg *
ffmpeg ffmpeg 0.3.2
ffmpeg ffmpeg 0.4.0
ffmpeg ffmpeg 0.5
ffmpeg ffmpeg 0.4.7
ffmpeg ffmpeg 0.3
ffmpeg ffmpeg 0.3.3
ffmpeg ffmpeg 0.5.1
ffmpeg ffmpeg 0.5.2
ffmpeg ffmpeg 0.4.8
ffmpeg ffmpeg 0.4.3
ffmpeg ffmpeg 0.4.5
ffmpeg ffmpeg 0.4.9
CVE-2011-2162 HIGH

Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Server 5 (aka MES5) have unknown impact and attack vectors, related to issues "originally discovered by Google Chrome developers."

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
ffmpeg ffmpeg 0.5.3
ffmpeg ffmpeg 0.4.4
ffmpeg ffmpeg 0.6.1
mandriva linux 2009.0
ffmpeg ffmpeg 0.4.2
ffmpeg ffmpeg 0.5.4
mplayerhq mplayer 1.0
mandriva enterprise_server 5
ffmpeg ffmpeg 0.4.6
mandriva linux 2010.0
ffmpeg ffmpeg 0.4.0
ffmpeg ffmpeg 0.4.7
ffmpeg ffmpeg 0.5.1
ffmpeg ffmpeg 0.5.2
mandriva corporate_server 4.0
mandriva linux 2010.1
ffmpeg ffmpeg 0.4.8
ffmpeg ffmpeg 0.4.3
ffmpeg ffmpeg 0.4.5
ffmpeg ffmpeg 0.4.9
CVE-2022-32317 MEDIUM

The MPlayer Project v1.5 was discovered to contain a heap use-after-free resulting in a double free in the preinit function at libvo/vo_v4l2.c. This vulnerability can lead to a Denial of Service (DoS) via a crafted file. The device=strdup statement is not executed on every call. Note: This has been disputed by third parties as invalid and not reproduceable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
mplayerhq mplayer 1.5
CVE-2022-38600

Mplayer SVN-r38374-13.0.1 is vulnerable to Memory Leak via vf.c and vf_vo.c.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
mplayerhq mplayer svn-r38374-13.0.1
CVE-2022-38850

The MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide By Zero via the function config () of llibmpcodecs/vf_scale.c.

Products Affected

Vendor Product Version
debian debian_linux 10.0
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38851

Certain The MPlayer Project products are vulnerable to Out-of-bounds Read via function read_meta_record() of mplayer/libmpdemux/asfheader.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

Products Affected

Vendor Product Version
debian debian_linux 10.0
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38853

Certain The MPlayer Project products are vulnerable to Buffer Overflow via function asf_init_audio_stream() of libmpdemux/asfheader.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38855

Certain The MPlayer Project products are vulnerable to Buffer Overflow via function gen_sh_video () of mplayer/libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

Products Affected

Vendor Product Version
debian debian_linux 10.0
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38856

Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38858

Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

Products Affected

Vendor Product Version
debian debian_linux 10.0
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38860

Certain The MPlayer Project products are vulnerable to Divide By Zero via function demux_open_avi() of libmpdemux/demux_avi.c which affects mencoder. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

Products Affected

Vendor Product Version
debian debian_linux 10.0
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38861

The MPlayer Project mplayer SVN-r38374-13.0.1 is vulnerable to memory corruption via function free_mp_image() of libmpcodecs/mp_image.c.

Products Affected

Vendor Product Version
debian debian_linux 10.0
mplayerhq mplayer svn-r38374-13.0.1
CVE-2022-38862

Certain The MPlayer Project products are vulnerable to Buffer Overflow via function play() of libaf/af.c:639. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38863

Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mp_getbits() of libmpdemux/mpeg_hdr.c which affects mencoder and mplayer. This affects mecoder SVN-r38374-13.0.1 and mplayer SVN-r38374-13.0.1.

Products Affected

Vendor Product Version
debian debian_linux 10.0
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38864

Certain The MPlayer Project products are vulnerable to Buffer Overflow via the function mp_unescape03() of libmpdemux/mpeg_hdr.c. This affects mencoder SVN-r38374-13.0.1 and mplayer SVN-r38374-13.0.1.

Products Affected

Vendor Product Version
debian debian_linux 10.0
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38865

Certain The MPlayer Project products are vulnerable to Divide By Zero via the function demux_avi_read_packet of libmpdemux/demux_avi.c. This affects mplyer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

Products Affected

Vendor Product Version
debian debian_linux 10.0
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1
CVE-2022-38866

Certain The MPlayer Project products are vulnerable to Buffer Overflow via read_avi_header() of libmpdemux/aviheader.c . This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

Products Affected

Vendor Product Version
debian debian_linux 10.0
mplayerhq mplayer svn-r38374-13.0.1
mplayerhq mencoder svn-r38374-13.0.1