Ubuntu
xine-lib package

Overview
Code
Bugs
Blueprints
Translations
Answers

Gutsy (7.10)
Bug #185034
Comment #1

Comment 1 for bug 185034

Revision history for this message

disabled.user (disabled.user-deactivatedaccount) wrote on 2008-01-23:

See also:
MDVSA-2008:020 (http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:020)

Quoting:
"Heap-based buffer overflow in the rmff_dump_cont function in
input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote
attackers to execute arbitrary code via the SDP Abstract attribute,
related to the rmff_dump_header function and related to disregarding
the max field. (CVE-2008-0225)

Multiple heap-based buffer overflows in the rmff_dump_cont function
in input/libreal/rmff.c in xine-lib 1.1.9 allow remote attackers
to execute arbitrary code via the SDP (1) Title, (2) Author, or
(3) Copyright attribute, related to the rmff_dump_header function,
different vectors than CVE-2008-0225. (CVE-2008-0238)"

Ubuntuxine-lib package

Comment 1 for bug 185034

Ubuntu
xine-lib package