CVE-2008-4866

EPSS 5.7%

mplayer - arbitrary code execution

Published: 11/1/2008Modified: 4/28/2026

Description

Multiple buffer overflows in libavformat/utils.c in FFmpeg 0.4.9 before r14715, as used by MPlayer, allow context-dependent attackers to have an unknown impact via vectors related to execution of DTS generation code with a delay greater than MAX_REORDER_DELAY.

Affected packages (3)

Debian/ffmpegfrom 0, < 0.svn20080206-14
Debian/mplayerfrom 0, < 1.0~rc2-14
Debian/mplayerfrom 0, < 1.0~rc1-12etch7

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-4866