CVE-2007-1387

Name	CVE-2007-1387
Description	The DirectShow loader (loader/dshow/DS_VideoDecoder.c) in MPlayer 1.0r ...
Source	CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-1536-1
Debian Bugs	414072, 414075

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
mplayer (PTS)	bullseye	2:1.4+ds1-1+deb11u1	fixed
	bookworm	2:1.5+svn38408-1	fixed
	trixie	2:1.5+svn38674-2	fixed
	forky, sid	2:1.5+svn38681-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
mplayer	source	etch	1.0~rc1-12etch
mplayer	source	(unstable)	1.0~rc1-13	low		414075
xine-lib	source	sarge	1.0.1-1sarge7		DSA-1536-1
xine-lib	source	etch	1.1.2+dfsg-6		DSA-1536-1
xine-lib	source	(unstable)	1.1.2+dfsg-3	low		414072

[sarge] - xine-lib <no-dsa> (Only affects external, proprietary w32codecs addons)