Bug 34493

Summary: linux-realplayer has a security vulnerability
Product: Ports & Packages Reporter: Joe Marcus Clarke <marcus>
Component: Individual Port(s)Assignee: Ade Lovett <ade>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   

Description Joe Marcus Clarke 2002-01-31 17:00:01 UTC 
	All versions of RealPlayer have been found to be vulnerable to buffer
overrun that allows users to gain elevated permissions.  This is better
documented at:

http://www.service.real.com/help/faq/security/bufferoverrun.html

Fix: 

Installing this library will correct the problem:

http://docs.real.com/docs/playerpatch/RP8_gold/rmffplin.so.6.0-linux-2.0-libc6-i386.gz
Comment 1 Ade Lovett freebsd_committer freebsd_triage 2002-03-13 01:11:36 UTC 
State Changed
From-To: open->feedback

Suggest you contact MAINTAINER(s) who can supply the necessary diffs, either 
as a followup to this PR, or as new ones.
Comment 2 Ade Lovett freebsd_committer freebsd_triage 2002-03-13 01:11:36 UTC 
Responsible Changed
From-To: freebsd-ports->ade

I'll track this.
Comment 3 Ade Lovett freebsd_committer freebsd_triage 2002-04-12 20:22:23 UTC 
State Changed
From-To: feedback->closed

Timeout (1 month) in feedback.