9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
Several local vulnerabilities have been discovered in Xine, a
media player library, allowed for a denial of service or arbitrary code
execution, which could be exploited through viewing malicious content.
The Common Vulnerabilities and Exposures project identifies the following
problems:
For the old stable distribution (sarge), these problems have been fixed in
version 1.0.1-1sarge7.
For the stable distribution (etch), these problems have been fixed in version
1.1.2+dfsg-6.
For the unstable distribution (sid), these problems have been fixed in
version 1.1.11-1.
We recommend that you upgrade your xine-lib package.
CPE | Name | Operator | Version |
---|---|---|---|
xine-lib | eq | 1.1.2+dfsg-4 | |
xine-lib | eq | 1.1.2+dfsg-5 |