CVE-2022-38856

Name of the Vulnerable Software and Affected Versions mplayer versions SVN-r38374-13.0.1 mencoder versions SVN-r38374-13.0.1

Description The issue is related to a Buffer Overflow vulnerability via the mov build index() function of libmpdemux/demux mov.c. This vulnerability affects certain products of The MPlayer Project.

Recommendations For mplayer version SVN-r38374-13.0.1, consider disabling the mov build index() function as a temporary workaround until a patch is available. For mencoder version SVN-r38374-13.0.1, restrict access to the libmpdemux/demux mov.c module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.