This update fixes several format string bugs that can be exploited remotely with user-assistance to execute arbitrary code. Since SUSE Linux version 10.1 format string bugs are not exploitable anymore. (CVE-2007-0017)
No temporary work-around known.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE | 10.2 | x86_64 | xine-extra | < 1.1.2-40.1 | xine-extra-1.1.2-40.1.x86_64.rpm |
openSUSE | 10.1 | x86_64 | xine-ui | < 0.99.4-32.14 | xine-ui-0.99.4-32.14.x86_64.rpm |
SUSE Linux Enterprise SDK | 10 | x86_64 | xine-ui | < 0.99.4-32.14 | xine-ui-0.99.4-32.14.x86_64.rpm |
SUSE Linux Enterprise SDK | 10 | ia64 | xine-lib | < 1.1.1-24.17 | xine-lib-1.1.1-24.17.ia64.rpm |
openSUSE | 10.0 | ppc | xine-extra | < 1.1.0-0.1 | xine-extra-1.1.0-0.1.ppc.rpm |
openSUSE | 10.0 | x86_64 | xine-ui | < 0.99.4-84.1 | xine-ui-0.99.4-84.1.x86_64.rpm |
openSUSE | 9.3 | i586 | xine-ui | < 1.0-10.14 | xine-ui-1.0-10.14.i586.rpm |
SUSE Linux Enterprise SDK | 10 | ia64 | xine-extra | < 1.1.1-24.17 | xine-extra-1.1.1-24.17.ia64.rpm |
openSUSE | 10.0 | x86_64 | xine-lib | < 1.1.0-0.1 | xine-lib-1.1.0-0.1.x86_64.rpm |
openSUSE | 10.2 | i586 | xine-devel | < 1.1.2-40.1 | xine-devel-1.1.2-40.1.i586.rpm |