MPlayer: Multiple vulnerabilities
Gentoo Linux Security Advisory
||GLSA 201310-13 / MPlayer
||October 25, 2013
||October 25, 2013: 1
All supported architectures
#253649, #279342, #339037, #379297, #394809
Multiple vulnerabilities have been found in MPlayer and the bundled
FFmpeg, the worst of which may lead to the execution of arbitrary code.
MPlayer is a media player including support for a wide range of audio
and video formats.
Multiple vulnerabilities have been discovered in MPlayer and the bundled
FFmpeg. Please review the CVE identifiers and FFmpeg GLSA referenced
below for details.
A remote attacker could entice a user to open a crafted media file to
execute arbitrary code or cause a Denial of Service.
There is no known workaround at this time.
All MPlayer users should upgrade to the latest version:
Code Listing 3.1: Resolution
# emerge --sync
# emerge --ask --oneshot --verbose ">=media-video/mplayer-1.1-r1"