CVE-2008-5237

Published: 26 November 2008

Multiple integer overflows in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via (1) crafted width and height values that are not validated by the mymng_process_header function in demux_mng.c before use in an allocation calculation or (2) crafted current_atom_size and string_size values processed by the parse_reference_atom function in demux_qt.c for an RDRF_ATOM string.

Priority

Status

Package	Release	Status
xine-lib Launchpad, Ubuntu, Debian	dapper	Released (1.1.1+ubuntu2-7.10)
	gutsy	Released (1.1.7-1ubuntu1.4)
	hardy	Released (1.1.11.1-1ubuntu3.2)
	intrepid	Released (1.1.15-0ubuntu3.1)
	upstream	Needs triage
	Patches: upstream: http://hg.debian.org/hg/xine-lib/xine-lib?cmd=changeset;node=9c97a9a9ba17a487116a198d80a74ec7879aa801;style=gitweb upstream: http://hg.debian.org/hg/xine-lib/xine-lib?cmd=changeset;node=65f524e14623;style=gitweb

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

CVE-2008-5237

Priority

Status

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Further reading