oval:org.mitre.oval:def:13748
Definition Id: oval:org.mitre.oval:def:13748 | |||
Oval ID: | oval:org.mitre.oval:def:13748 | ||
Title: | USN-746-1 -- xine-lib vulnerability | ||
Description: | It was discovered that the 4xm demuxer in xine-lib did not correctly handle a large current_track value in a 4xm file, resulting in an integer overflow. If a user or automated system were tricked into opening a specially crafted 4xm movie file, an attacker could crash xine-lib or possibly execute arbitrary code with the privileges of the user invoking the program. USN-710-1 provided updated xine-lib packages to fix multiple security vulnerabilities. The security patch to fix CVE-2008-5239 introduced a regression causing some media files to be unplayable. This update corrects the problem. We apologize for the inconvenience. Original advisory details: It was discovered that the input handlers in xine-lib did not correctly handle certain error codes, resulting in out-of-bounds reads and heap- based buffer overflows. If a user or automated system were tricked into opening a specially crafted file, stream, or URL, an attacker could execute arbitrary code as the user invoking the program | ||
Family: | unix | Class: | patch |
Reference(s): | USN-746-1 CVE-2009-0698 CVE-2008-5239 | Version: | 5 |
Platform(s): | Ubuntu 7.10 Ubuntu 8.04 Ubuntu 6.06 Ubuntu 8.10 | Product(s): | xine-lib |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:13250 | |||
Oval ID: | oval:org.mitre.oval:def:13250 | ||
Title: | Ubuntu 8.04 is installed | ||
Description: | Ubuntu 8.04 is installed | ||
Family: | unix | Class: | inventory |
Reference(s): | cpe:/o:ubuntu:ubuntu_linux:8.04 | Version: | 3 |
Platform(s): | Ubuntu 8.04 | Product(s): | |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:13748 |
Definition Id: oval:org.mitre.oval:def:13319 | |||
Oval ID: | oval:org.mitre.oval:def:13319 | ||
Title: | Ubuntu 6.06 is installed | ||
Description: | Ubuntu 6.06 is installed | ||
Family: | unix | Class: | inventory |
Reference(s): | cpe:/o:ubuntu:ubuntu_linux:6.06 | Version: | 3 |
Platform(s): | Ubuntu 6.06 | Product(s): | |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:13748 |
Definition Id: oval:org.mitre.oval:def:13306 | |||
Oval ID: | oval:org.mitre.oval:def:13306 | ||
Title: | Ubuntu 8.10 is installed | ||
Description: | Ubuntu 8.10 is installed | ||
Family: | unix | Class: | inventory |
Reference(s): | cpe:/o:ubuntu:ubuntu_linux:8.10 | Version: | 3 |
Platform(s): | Ubuntu 8.10 | Product(s): | |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:13748 |
Definition Id: oval:org.mitre.oval:def:13354 | |||
Oval ID: | oval:org.mitre.oval:def:13354 | ||
Title: | Ubuntu 7.10 is installed | ||
Description: | Ubuntu 7.10 is installed | ||
Family: | unix | Class: | inventory |
Reference(s): | cpe:/o:ubuntu:ubuntu_linux:7.10 | Version: | 3 |
Platform(s): | Ubuntu 7.10 | Product(s): | |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:13748 |