15 matches found
SUSE CVE-2008-1878
Stack-based buffer overflow in the demuxnsfsendchunk function in src/demuxers/demuxnsf.c in xine-lib 1.1.12 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long NSF title...
SuSE 10 Security Update : xine (ZYPP Patch Number 5304)
Specially crafted NSF files could potentially be exploited to execute arbitrary code. CVE-2008-1878 Specially crafted files or streams could potentially be abused to trick applications that support speex into executing arbitrary code. CVE-2008-1686 %NASLMINLEVEL 70300 C Tenable Network Security,...
Mandriva Linux Security Advisory : xine-lib (MDVSA-2008:177)
Guido Landi found A stack-based buffer overflow in xine-lib that could allow a remote attacker to cause a denial of service crash and potentially execute arbitrary code via a long NSF title CVE-2008-1878. The updated packages have been patched to correct this issue. %NASLMINLEVEL 70300 C Tenable...
Mandriva Update for xine-lib MDVSA-2008:177 (xine-lib)
Check for the Version of xine-lib OpenVAS Vulnerability Test Mandriva Update for xine-lib MDVSA-2008:177 xine-lib Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
Mandriva Update for xine-lib MDVSA-2008:178 (xine-lib)
Check for the Version of xine-lib OpenVAS Vulnerability Test Mandriva Update for xine-lib MDVSA-2008:178 xine-lib Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
Fedora Update for xine-lib FEDORA-2008-3353
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for xine-lib FEDORA-2008-7572
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Gentoo Security Advisory GLSA 200808-01 (xine-lib)
The remote host is missing updates announced in advisory GLSA 200808-01. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1586-1 : xine-lib - multiple vulnerabilities
Multiple vulnerabilities have been discovered in xine-lib, a library which supplies most of the application functionality of the xine multimedia player. The Common Vulnerabilities and Exposures project identifies the following three problems : - CVE-2008-1482 Integer overflow vulnerabilities exis...
DSA-1586-1 xine-lib - multiple vulnerabilities
Bulletin has no description...
openSUSE 10 Security Update : xine-devel (xine-devel-5204)
Specially crafted NSF files could potentially be exploited to execute arbitrary code CVE-2008-1878. Specially crafted files or streams could potentially be abused to trick applications that support speex into executing arbitrary code CVE-2008-1686. %NASLMINLEVEL 70300 C Tenable Network Security,...
SuSE 10 Security Update : xine-lib (ZYPP Patch Number 5205)
Specially crafted NSF files could potentially be exploited to execute arbitrary code. CVE-2008-1878 Specially crafted files or streams could potentially be abused to trick applications that support speex into executing arbitrary code. CVE-2008-1686 %NASLMINLEVEL 70300 C Tenable Network Security,...
Fedora 7 : xine-lib-1.1.11.1-1.fc7.2 (2008-3326)
Bug 442882 - CVE-2008-1878 xine-lib: buffer overflow in nsf demuxer Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Stack overflow
Stack-based buffer overflow in the demuxnsfsendheaders function in src/demuxers/demuxnsf.c in xine-lib allows remote attackers to have an unknown impact via a long copyright field in an NSF header in an NES Sound file, a different issue than CVE-2008-1878. NOTE: a third party claims that the...
CVE-2008-1878
CVE-2008-1878 is a stack-based buffer overflow in xine-lib (demux_nsf_send_chunk in src/demuxers/demux_nsf.c) that allows a remote attacker to crash the application and potentially execute arbitrary code via a long NSF title, affecting xine-lib 1.1.12 and earlier. Public advisories across distrib...