Posts Tagged ‘stream’

DSA-1646 squid - array bounds check

Saturday, November 1st, 2008

A weakness has been discovered in squid, a caching proxy server. The
flaw was introduced upstream in response to CVE-2007-6239, and
announced by Debian in DSA-1482-1. The flaw involves an
over-aggressive bounds check on an array resize, and could be
exploited by an authorized client to induce a denial of service
condition against squid.

Read the full story: DSA-1646 squid - array bounds check: http://www.debian.org/security/2008/dsa-1646

DSA-1644 mplayer - integer overflow

Saturday, November 1st, 2008

Felipe Andres Manzano discovered that mplayer, a multimedia player, is
vulnerable to several integer overflows in the Real video stream
demuxing code. These flaws could allow an attacker to cause a denial
of service (a crash) or potentially execution of arbitrary code by
supplying a maliciously crafted video file.

Read the full story: DSA-1644 mplayer - integer overflow: http://www.debian.org/security/2008/dsa-1644

DSA-1583 gnome-peercast - buffer overflow

Wednesday, May 21st, 2008

Several remote vulnerabilities have been discovered in Gnome PeerCast,
the Gnome interface to PeerCast, a P2P audio and video streaming
server. The Common Vulnerabilities and Exposures project identifies the
following problems:

Read the full story: DSA-1583 gnome-peercast - buffer overflow: http://www.debian.org/security/2008/dsa-1583