Mplayer

mplayer

Vendor: Mplayerhq • 19 CVEs

CVEs (19)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-38851 2Debian Mplayerhq 3Debian Linux MencoderMplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Out-of-bounds Read via function read_meta_record() of mplayer/libmpdemux/asfheader.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVE-2022-38600 1Mplayerhq 1Mplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Mplayer SVN-r38374-13.0.1 is vulnerable to Memory Leak via vf.c and vf_vo.c.
CVE-2022-38866 2Debian Mplayerhq 3Debian Linux MencoderMplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Buffer Overflow via read_avi_header() of libmpdemux/aviheader.c . This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVE-2022-38865 2Debian Mplayerhq 3Debian Linux MencoderMplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Divide By Zero via the function demux_avi_read_packet of libmpdemux/demux_avi.c. This affects mplyer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVE-2022-38864 2Debian Mplayerhq 3Debian Linux MencoderMplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Buffer Overflow via the function mp_unescape03() of libmpdemux/mpeg_hdr.c. This affects mencoder SVN-r38374-13.0.1 and mplayer SVN-r38374-13.0.1.
CVE-2022-38863 2Debian Mplayerhq 3Debian Linux MencoderMplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mp_getbits() of libmpdemux/mpeg_hdr.c which affects mencoder and mplayer. This affects mecoder SVN-r38374-13.0.1 and mplayer SVN-r38374-...Show more Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mp_getbits() of libmpdemux/mpeg_hdr.c which affects mencoder and mplayer. This affects mecoder SVN-r38374-13.0.1 and mplayer SVN-r38374-13.0.1.Show less
CVE-2022-38862 1Mplayerhq 2Mencoder Mplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Buffer Overflow via function play() of libaf/af.c:639. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVE-2022-38861 2Debian Mplayerhq 2Debian Linux Mplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 The MPlayer Project mplayer SVN-r38374-13.0.1 is vulnerable to memory corruption via function free_mp_image() of libmpcodecs/mp_image.c.
CVE-2022-38860 2Debian Mplayerhq 3Debian Linux MencoderMplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Divide By Zero via function demux_open_avi() of libmpdemux/demux_avi.c which affects mencoder. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVE-2022-38858 2Debian Mplayerhq 3Debian Linux MencoderMplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVE-2022-38856 1Mplayerhq 2Mencoder Mplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Buffer Overflow via function mov_build_index() of libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVE-2022-38855 2Debian Mplayerhq 3Debian Linux MencoderMplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Buffer Overflow via function gen_sh_video () of mplayer/libmpdemux/demux_mov.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVE-2022-38853 1Mplayerhq 2Mencoder Mplayer Nov 21, 2024 Sep 15, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Certain The MPlayer Project products are vulnerable to Buffer Overflow via function asf_init_audio_stream() of libmpdemux/asfheader.c. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
CVE-2022-32317 1Mplayerhq 1Mplayer Nov 21, 2024 Jul 14, 2022 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The MPlayer Project v1.5 was discovered to contain a heap use-after-free resulting in a double free in the preinit function at libvo/vo_v4l2.c. This vulnerability can lead to a Denial of Service (DoS) via a crafted file....Show more The MPlayer Project v1.5 was discovered to contain a heap use-after-free resulting in a double free in the preinit function at libvo/vo_v4l2.c. This vulnerability can lead to a Denial of Service (DoS) via a crafted file. The device=strdup statement is not executed on every call. Note: This has been disputed by third parties as invalid and not reproduceable.Show less
CVE-2011-2162 3Ffmpeg MandrivaMplayerhq 5Corporate Server Enterprise ServerFfmpeg+2 more Apr 29, 2026 May 20, 2011 N/A· v4 N/A· v3 10.0 HIGH· v2 Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Serve...Show more Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Server 5 (aka MES5) have unknown impact and attack vectors, related to issues "originally discovered by Google Chrome developers."Show less
CVE-2011-2160 2Ffmpeg Mplayerhq 2Ffmpeg Mplayer Apr 29, 2026 May 20, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restrict read operations, which allows remote attackers to have an unspecified impact via a crafted VC-1 fi...Show more The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restrict read operations, which allows remote attackers to have an unspecified impact via a crafted VC-1 file, a related issue to CVE-2011-0723.Show less
CVE-2011-0722 2Ffmpeg Mplayerhq 2Ffmpeg Mplayer Apr 29, 2026 May 20, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a malformed RealMedia...Show more FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a malformed RealMedia file.Show less
CVE-2010-3908 2Ffmpeg Mplayerhq 2Ffmpeg Mplayer Apr 29, 2026 May 20, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a malformed WMV file.
CVE-2010-3429 2Ffmpeg Mplayerhq 3Ffmpeg LibavcodecMplayer Apr 29, 2026 Sep 30, 2010 N/A· v4 N/A· v3 6.8 MEDIUM· v2 flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerabi...Show more flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."Show less