CVE-2009-1274

Published: 08 April 2009

Integer overflow in the qt_error parse_trak_atom function in demuxers/demux_qt.c in xine-lib 1.1.16.2 and earlier allows remote attackers to execute arbitrary code via a Quicktime movie file with a large count value in an STTS atom, which triggers a heap-based buffer overflow.

Priority

Medium

Status

Package Release Status
xine-lib
Launchpad, Ubuntu, Debian
Upstream Needs triage

Patches:
Upstream: http://hg.debian.org/hg/xine-lib/xine-lib/rev/d21a4564db03

Notes

AuthorNote
mdeslaur
when fixing this, need to also fix a missing part of CVE-2009-0698
http://hg.debian.org/hg/xine-lib/xine-lib/rev/7799748cc0f2

References

Bugs