libxine -- array index vulnerability

2008-04-06T00:00:00
ID 7A7C5853-10A3-11DD-8EB8-00163E000016
Type freebsd
Reporter FreeBSD
Modified 2008-04-06T00:00:00

Description

xine Team reports:

A new xine-lib version is now available. This release contains a security fix (an unchecked array index that could allows remote attackers to execute arbitrary code via a header structure containing a negative offset, which is used to dereference a function pointer.)