Xine-lib@1.1.10.1 Security Vulnerabilities and Issues — Xine-lib@1.1.10.1 CVE List

Lucene search

XineXine-lib1.1.10.1

17 matches found

CVE•added 2008/03/24 10:44 p.m.•61 views

CVE-2008-0073

Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.

6.8CVSS7.1AI score0.02708EPSS

CVE•added 2008/11/26 1:30 a.m.•60 views

CVE-2008-5241

Integer underflow in demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allows remote attackers to cause a denial of service (crash) via a crafted media file that results in a small value of moov_atom_size in a compressed MOV (aka CMOV_ATOM).

4.3CVSS7.1AI score0.01336EPSS

CVE•added 2008/07/18 4:41 p.m.•57 views

CVE-2008-3231

xine-lib before 1.1.15 allows remote attackers to cause a denial of service (crash) via a crafted OGG file, as demonstrated by playing lol-ffplay.ogg with xine.

4.3CVSS7.1AI score0.0203EPSS

CVE•added 2008/11/26 1:30 a.m.•55 views

CVE-2008-5246

Multiple heap-based buffer overflows in xine-lib before 1.1.15 allow remote attackers to execute arbitrary code via vectors that send ID3 data to the (1) id3v22_interp_frame and (2) id3v24_interp_frame functions in src/demuxers/id3.c. NOTE: the provenance of this information is unknown; the details...

9.3CVSS7.7AI score0.04348EPSS

CVE•added 2008/04/08 6:5 p.m.•51 views

CVE-2008-1686

Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows remote attackers to execute arbitrary code via a header structure conta...

9.3CVSS7.4AI score0.0525EPSS

CVE•added 2008/04/17 10:5 p.m.•51 views

CVE-2008-1878

Stack-based buffer overflow in the demux_nsf_send_chunk function in src/demuxers/demux_nsf.c in xine-lib 1.1.12 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long NSF title.

7.5CVSS7.7AI score0.06108EPSS

CVE•added 2008/11/26 1:30 a.m.•51 views

CVE-2008-5234

Multiple heap-based buffer overflows in xine-lib 1.1.12, and other versions before 1.1.15, allow remote attackers to execute arbitrary code via vectors related to (1) a crafted metadata atom size processed by the parse_moov_atom function in demux_qt.c and (2) frame reading in the id3v23_interp_fram...

9.3CVSS7.7AI score0.05523EPSS

CVE•added 2008/11/26 1:30 a.m.•49 views

CVE-2008-5240

xine-lib 1.1.12, and other 1.1.15 and earlier versions, relies on an untrusted input value to determine the memory allocation and does not check the result for (1) the MATROSKA_ID_TR_CODECPRIVATE track entry element processed by demux_matroska.c; and (2) PROP_TAG, (3) MDPR_TAG, and (4) CONT_TAG chu...

4.3CVSS7.9AI score0.03047EPSS

CVE•added 2008/11/26 1:30 a.m.•49 views

CVE-2008-5243

The real_parse_headers function in demux_real.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, relies on an untrusted input length value to "reindex into an allocated buffer," which allows remote attackers to cause a denial of service (crash) via a crafted value, probably an array index...

4.3CVSS7.1AI score0.01369EPSS

CVE•added 2008/11/26 1:30 a.m.•49 views

CVE-2008-5245

xine-lib before 1.1.15 performs V4L video frame preallocation before ascertaining the required length, which has unknown impact and attack vectors, possibly related to a buffer overflow in the open_video_capture_device function in src/input/input_v4l.c.

9.3CVSS7.7AI score0.01286EPSS

CVE•added 2008/11/26 1:30 a.m.•48 views

CVE-2008-5233

xine-lib 1.1.12, and other versions before 1.1.15, does not check for failure of malloc in circumstances including (1) the mymng_process_header function in demux_mng.c, (2) the open_mod_file function in demux_mod.c, and (3) frame_buffer allocation in the real_parse_audio_specific_data function in d...

4.3CVSS7.9AI score0.01413EPSS

CVE•added 2008/11/26 1:30 a.m.•48 views

CVE-2008-5239

xine-lib 1.1.12, and other 1.1.15 and earlier versions, does not properly handle (a) negative and (b) zero values during unspecified read function calls in input_file.c, input_net.c, input_smb.c, and input_http.c, which allows remote attackers to cause a denial of service (crash) or possibly execut...

4.3CVSS8.1AI score0.02065EPSS

CVE•added 2008/11/26 1:30 a.m.•48 views

CVE-2008-5248

xine-lib before 1.1.15 allows remote attackers to cause a denial of service (crash) via "MP3 files with metadata consisting only of separators."

4.3CVSS7.2AI score0.00564EPSS

CVE•added 2008/11/26 1:30 a.m.•47 views

CVE-2008-5242

demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, does not validate the count field before calling calloc for STSD_ATOM atom allocation, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted media file.

6.8CVSS7.9AI score0.01051EPSS

CVE•added 2008/11/26 1:30 a.m.•47 views

CVE-2008-5244

Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact and attack vectors related to libfaad. NOTE: due to the lack of details, it is not clear whether this is an issue in xine-lib or in libfaad.

10CVSS7.3AI score0.00435EPSS

CVE•added 2009/04/08 6:30 p.m.•43 views

CVE-2009-1274

Integer overflow in the qt_error parse_trak_atom function in demuxers/demux_qt.c in xine-lib 1.1.16.2 and earlier allows remote attackers to execute arbitrary code via a Quicktime movie file with a large count value in an STTS atom, which triggers a heap-based buffer overflow.

5CVSS7.8AI score0.04836EPSS

CVE•added 2008/11/26 1:30 a.m.•37 views

CVE-2008-5247

The real_parse_audio_specific_data function in demux_real.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, uses an untrusted height (aka codec_data_length) value as a divisor, which allow remote attackers to cause a denial of service (divide-by-zero error and crash) via a zero value.

4.3CVSS7.2AI score0.01036EPSS