CVE-2008-5233
Published: 26 November 2008
xine-lib 1.1.12, and other versions before 1.1.15, does not check for failure of malloc in circumstances including (1) the mymng_process_header function in demux_mng.c, (2) the open_mod_file function in demux_mod.c, and (3) frame_buffer allocation in the real_parse_audio_specific_data function in demux_real.c, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted media file.
Notes
| Author | Note |
|---|---|
| mdeslaur | this is half of 2A, 2B, and half of 2C |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
xine-lib Launchpad, Ubuntu, Debian |
dapper |
Released
(1.1.1+ubuntu2-7.10)
|
| gutsy |
Released
(1.1.7-1ubuntu1.4)
|
|
| hardy |
Released
(1.1.11.1-1ubuntu3.2)
|
|
| intrepid |
Not vulnerable
(1.1.15-0ubuntu1)
|
|
| upstream |
Released
(1.1.15)
|
|
|
Patches: upstream: http://hg.debian.org/hg/xine-lib/xine-lib?cmd=changeset;node=35f09930323e46c92e521846b9ccdfd5e277ad16;style=gitweb |
||