Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-200501-07
HistoryJan 06, 2005 - 12:00 a.m.

xine-lib: Multiple overflows

2005-01-0600:00:00
Gentoo Foundation
security.gentoo.org
11

0.05 Low

EPSS

Percentile

92.8%

JSON

Background

xine-lib is a multimedia library which can be utilized to create multimedia frontends.

Description

Ariel Berkman discovered that xine-lib reads specific input data into an array without checking the input size in demux_aiff.c, making it vulnerable to a buffer overflow (CAN-2004-1300) . iDefense discovered that the PNA_TAG handling code in pnm_get_chunk() does not check if the input size is larger than the buffer size (CAN-2004-1187). iDefense also discovered that in this same function, a negative value could be given to an unsigned variable that specifies the read length of input data (CAN-2004-1188).

Impact

A remote attacker could craft a malicious movie or convince a targeted user to connect to a malicious PNM server, which could result in the execution of arbitrary code with the rights of the user running any xine-lib frontend.

Workaround

There is no known workaround at this time.

Resolution

All xine-lib users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose media-libs/xine-lib
OSVersionArchitecturePackageVersionFilename
Gentooanyallmedia-libs/xine-lib< 1_rc8-r1UNKNOWN

Related

openvas 6
nessus 4
cve 3
debiancve 3
freebsd 2
ubuntucve 3
cvelist 3
securityvulns 3
openvas
openvas
Gentoo Security Advisory GLSA 200501-07 (xine-lib)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200501-07 (xine-lib)
2008-09-24 00:00:00
mplayer -- multiple vulnerabilities
2008-09-04 00:00:00
nessus
nessus
GLSA-200501-07 : xine-lib: Multiple overflows
2005-02-14 00:00:00
Mandrake Linux Security Advisory : xine-lib (MDKSA-2005:011)
2005-01-19 00:00:00
FreeBSD : mplayer -- multiple vulnerabilities (85d76f02-5380-11d9-a9e7-0001020eed82)
2005-07-13 00:00:00
cve
cve
CVE-2004-1187
2005-01-10 05:00:00
CVE-2004-1188
2005-01-10 05:00:00
CVE-2004-1300
2005-01-10 05:00:00
debiancve
debiancve
CVE-2004-1187
2005-01-10 05:00:00
CVE-2004-1188
2005-01-10 05:00:00
CVE-2004-1300
2005-01-10 05:00:00
freebsd
freebsd
mplayer -- multiple vulnerabilities
2004-12-10 00:00:00
libxine -- buffer-overflow vulnerability in aiff support
2004-12-15 00:00:00
ubuntucve
ubuntucve
CVE-2004-1187
2005-01-10 00:00:00
CVE-2004-1188
2005-01-10 00:00:00
CVE-2004-1300
2005-01-10 00:00:00
cvelist
cvelist
CVE-2004-1187
2004-12-22 05:00:00
CVE-2004-1188
2004-12-22 05:00:00
CVE-2004-1300
2004-12-22 05:00:00
securityvulns
securityvulns
XSA-2004-7: stack overflow in AIFF demultiplexer
2004-12-30 00:00:00
iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler PNA_TAG Heap Overflow Vulnerability
2004-12-22 00:00:00
iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler Negative Read Length Heap Overflow Vulnerability
2004-12-22 00:00:00

0.05 Low

EPSS

Percentile

92.8%

JSON
Related for GLSA-200501-07
openvas6nessus4cve3debiancve3freebsd2ubuntucve3cvelist3securityvulns3