CVE-2008-5248

Publication date 26 November 2008

Last updated 24 July 2024

Ubuntu priority

Low

Why this priority?

xine-lib before 1.1.15 allows remote attackers to cause a denial of service (crash) via "MP3 files with metadata consisting only of separators."

Status

Package Ubuntu Release Status
xine-lib 8.10 intrepid
Not affected
8.04 LTS hardy
Fixed 1.1.11.1-1ubuntu3.2
7.10 gutsy
Fixed 1.1.7-1ubuntu1.4
6.06 LTS dapper
Fixed 1.1.1+ubuntu2-7.10

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
xine-lib

References

Related Ubuntu Security Notices (USN)

    • USN-710-1
    • xine-lib vulnerabilities
    • 26 January 2009

Other references