Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo: GLSA-200800-12 Normal: xine-lib Heap Overflow Attack

gentoo
Calendar Grey April 15, 2007
Dist Gentoo Esm H88
Gentoo has issued a notice regarding a heap overflow vulnerability present in xine-lib, which poses a risk of enabling arbitrary code execution.
xine-lib is vulnerable to a heap-based buffer overflow.

Summary

Gentoo Linux Security Advisory GLSA 200704-09 https://security.gentoo.org/ Severity: Normal Title: xine-lib: Heap-based buffer overflow Date: April 14, 2007 Bugs: #170208 ID: 200704-09

Synopsis ======= xine-lib is vulnerable to a heap-based buffer overflow.
Background ========= xine-lib is the core library package for the xine media player.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/xine-lib < 1.1.4-r2 >= 1.1.4-r2 ------------------------------------------------------------------- # Package 1 only applies to x86 users.
========== xine-lib does not check boundaries on data being read into buffers from DMO video files in code that is share...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo buffer overflow code execution heap overflow media player xine-lib

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo buffer overflow code execution heap overflow media player xine-lib

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here