Big bug fix for Linux a month in coming
Linux vendors are urging users to patch a serious bug in the graphical user interface of the popular Mplayer media player application, which could allow a remote attacker to execute malicious code on a Linux or Unix system.
Gentoo Linux released an advisory on Monday, instructing users to upgrade to the latest version of Mplayer. However, developers have warned that more bugs of the same sort are likely to be uncovered in Mplayer's GUI and recommended administrators to switch the interface off.
The application comes with many Linux distributions and is likely to have the GUI switched on by default, warned "c0ntex", the researcher at Open Security Group who discovered the flaw. It was originally confirmed on Red Hat and FreeBSD installations, though any version of Linux is likely to be vulnerable.
The bug was first publicly reported on the Bugtraq security mailing list about a month ago, and the Mplayer project released a fix at that time, which Linux vendors are now tailoring for their individual distributions. All versions of Mplayer up to 1.0pre4 are vulnerable, c0ntex said.
A problem in the common.c file, part of the GUI, is vulnerable to a buffer overflow caused by improper checking of user-supplied input. The result is that if a user were enticed to play a specially-crafted media file the player could be crashed or malicious code executed on the system.
More problems are likely to surface in common.c, according to one Mplayer developer. In a message to a Mplayer developers' email list in early June, programmer Richard Felker said he had discovered "lots" of buffer overflows in the file. "I would recommend not using the GUI," he wrote. "This code is so nasty and broken that I'm not going to spend my time fixing it... if you want the GUI to work, and don't want to be embarrassed by remote (vulnerabilities) in Mplayer, step up and fix it."
Advisories from Secunia, Internet Security Systems Inc. and others have given the Mplayer bug a high-risk rating. The bug has the reference code CAN-2004-0659 in the U.S. government-backed Common Vulnerabilities and Exposures database.
» posted by abennett
Techworld.com
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
Esther Schindler
If the comments are ugly, the code is ugly
claird
SVG a graphics format for 21st century
pasmith
Take Chrome OS for a test spin
Sandra Henry-Stocker
Solaris Tip: Have Your Files Changed Since Installation?
jfruh
Android fragments vs. the iPhone monolith
mikelgan
What Gizmodo missed about the Pro WX Wireless USB disk drive
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
