SMPlayer sub_read_line_sami function Stack Buffer Overflow Vulnerability

SMPlayer sub_read_line_sami function Stack Buffer Overflow Vulnerability

Release date:
Updated on:

Affected Systems:
SMPlayer 0.6.9
Description:
--------------------------------------------------------------------------------
CVE (CAN) ID: CVE-2011-3625
 
Smplayer is a Media Player Based on the Qt library and uses Mplayer as the backend.
 
Subreader in MPlayer used in SMPlayer 0.6.9. the sub_read_line_sami function in c has the stack buffer overflow vulnerability. Remote attackers can exploit this vulnerability to cause denial of service or arbitrary code execution by using long strings in the SAMI subtitle file.

Install SMplayer 0.6.10-PPA source on Ubuntu

Install and use Mplayer in CentOS 5.5

Install Mplayer in Ubuntu 8.04 to watch wonderful movies.

Linux player-install MPlayer and SMPlayer in RedHat

Install the video player SMPlayer 14.3.0 on Ubuntu and its derivative versions.
 
<**>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
 
SMPlayer
--------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
 
Http://smplayer.sourceforge.net/
Http://git.mplayer2.org/mplayer2/commit? Id = 27b88a09c5319deb62221b8cd0ecc14cd36e4a

SMPlayer details: click here
SMPlayer: click here

This article permanently updates the link address: