An updated RealPlayer package that fixes a security flaw is now available
for Red Hat Enterprise Linux 3 Extras, 4 Extras, and 5 Supplementary.
This update has been rated as having critical security impact by the Red
Hat Security Response Team.
RealPlayer is a media player that provides media playback locally and via
A buffer overflow flaw was found in the way RealPlayer processed
Synchronized Multimedia Integration Language (SMIL) files. It was possible
for a malformed SMIL file to execute arbitrary code with the permissions of
the user running RealPlayer. (CVE-2007-3410)
All users of RealPlayer are advised to upgrade to this updated package
containing RealPlayer version 10.0.9 which is not vulnerable to this issue.