MPlayer: Multiple vulnerabilities Multiple vulnerabilities have been found in MPlayer and the bundled FFmpeg, the worst of which may lead to the execution of arbitrary code. MPlayer 2013-10-25 2013-10-25 253649 279342 339037 379297 394809 remote 1.1-r1 1.1-r1

MPlayer is a media player including support for a wide range of audio and video formats.

Multiple vulnerabilities have been discovered in MPlayer and the bundled FFmpeg. Please review the CVE identifiers and FFmpeg GLSA referenced below for details.

A remote attacker could entice a user to open a crafted media file to execute arbitrary code or cause a Denial of Service.

There is no known workaround at this time.

All MPlayer users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=media-video/mplayer-1.1-r1" CVE-2007-6718 CVE-2008-4610 CVE-2010-2062 CVE-2010-3429 CVE-2011-3625 FFmpeg: Multiple Vulnerabilities a3li underling