CVE-2008-1878

Published: 17 April 2008

Stack-based buffer overflow in the demux_nsf_send_chunk function in src/demuxers/demux_nsf.c in xine-lib 1.1.12 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long NSF title.

Priority

Medium

Status

Package Release Status
xine-lib
Launchpad, Ubuntu, Debian
Upstream
Released (1.1.14)
Patches:
Vendor: http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00001.html