Slackware 9.1 SSA:2004-111-01 Critical: xine MRL Threat Fix
slackware
April 21, 2004
New xine packages are available for Slackware 9.1 and -current to fix security issues
Summary
Here are the details from the Slackware 9.1 ChangeLog: Tue Apr 20 19:01:58 PDT 2004 patches/packages/xine-lib-1rc3c-i686-1.tgz: Upgraded to xine-lib-1-rc3c. This release fixes a security problem where opening a malicious MRL could write to system (or other) files. For detailed information, see: http://xinehq.de Thanks to Dario Nicodemi for the heads-up on this advisory. (* Security fix *) patches/packages/xine-ui-0.99.1-i686-1.tgz: Upgraded to xine-ui-0.99.1, which fixes a similar MRL security issue. For details, see: http://xinehq.de Thanks again to Dario Nicodemi. (* Security fix *) WHERE TO FIND THE NEW PACKAGES: Updated packages for Slackware 9.1: ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/xine-ui-0.99.1-i686-1.tgz Updated packages for Slackware -current: MD5 SIGNATURES: Slackware 9.1 packages: 68b21648a6cd97728e616343aac98ebc xine-lib-1rc3c-i686-1.tgz 0bac6817cc73f31a3a5f1eddaf6f3d87
Read the Full Advisory
Topics Covered
Where Find New Packages
MD5 Signatures
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!