7 matches found
Gentoo Security Advisory GLSA 200604-16 (xine-lib)
The remote host is missing updates announced in advisory GLSA 200604-16. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200802-12 (xine-lib)
The remote host is missing updates announced in advisory GLSA 200802-12. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD Ports: libxine
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Buffer overflow
Buffer overflow in demuxers/demuxasf.c aka the ASF demuxer in the xineplugdmxasf.so plugin in xine-lib before 1.1.10 allows remote attackers to execute arbitrary code or cause a denial of service crash via a crafted ASF header. NOTE: this issue leads to a crash when an attack uses the CVE-2006-16...
Fedora 8 : xine-lib-1.1.10-1.fc8 (2008-1043)
Maintenance/security fix release 1.1.10. http://sourceforge.net/project/shownotes.php?groupid=9655&releaseid= 571608 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format...
libxine -- buffer overflow vulnerability
xine project reports: A new xine-lib version is now available. This release contains a security fix remotely-expoitable buffer overflow, CVE-2006-1664. This is not the first time that that bug has been fixed... It also fixes a few more recent bugs, such as the audio output problems in 1.1.9...
CVE-2006-1664
CVE-2006-1664 concerns a buffer overflow in xine_list_delete_current within libxine (v1.14 and earlier; as distributed in xine-lib v1.1.1 and earlier). The flaw permits remote code execution via a crafted MPEG stream. The entry lists a NETWORK attack vector with no authentication, no user interac...