oval:org.mitre.oval:def:13748

Definition Id: oval:org.mitre.oval:def:13748
 
Oval ID: oval:org.mitre.oval:def:13748
Title: USN-746-1 -- xine-lib vulnerability
Description: It was discovered that the 4xm demuxer in xine-lib did not correctly handle a large current_track value in a 4xm file, resulting in an integer overflow. If a user or automated system were tricked into opening a specially crafted 4xm movie file, an attacker could crash xine-lib or possibly execute arbitrary code with the privileges of the user invoking the program. USN-710-1 provided updated xine-lib packages to fix multiple security vulnerabilities. The security patch to fix CVE-2008-5239 introduced a regression causing some media files to be unplayable. This update corrects the problem. We apologize for the inconvenience. Original advisory details: It was discovered that the input handlers in xine-lib did not correctly handle certain error codes, resulting in out-of-bounds reads and heap- based buffer overflows. If a user or automated system were tricked into opening a specially crafted file, stream, or URL, an attacker could execute arbitrary code as the user invoking the program
Family: unix Class: patch
Reference(s): USN-746-1
CVE-2009-0698
CVE-2008-5239
Version: 5
Platform(s): Ubuntu 7.10
Ubuntu 8.04
Ubuntu 6.06
Ubuntu 8.10
Product(s): xine-lib
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:13250
 
Oval ID: oval:org.mitre.oval:def:13250
Title: Ubuntu 8.04 is installed
Description: Ubuntu 8.04 is installed
Family: unix Class: inventory
Reference(s): cpe:/o:ubuntu:ubuntu_linux:8.04
Version: 3
Platform(s): Ubuntu 8.04
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13748
Definition Id: oval:org.mitre.oval:def:13319
 
Oval ID: oval:org.mitre.oval:def:13319
Title: Ubuntu 6.06 is installed
Description: Ubuntu 6.06 is installed
Family: unix Class: inventory
Reference(s): cpe:/o:ubuntu:ubuntu_linux:6.06
Version: 3
Platform(s): Ubuntu 6.06
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13748
Definition Id: oval:org.mitre.oval:def:13306
 
Oval ID: oval:org.mitre.oval:def:13306
Title: Ubuntu 8.10 is installed
Description: Ubuntu 8.10 is installed
Family: unix Class: inventory
Reference(s): cpe:/o:ubuntu:ubuntu_linux:8.10
Version: 3
Platform(s): Ubuntu 8.10
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13748
Definition Id: oval:org.mitre.oval:def:13354
 
Oval ID: oval:org.mitre.oval:def:13354
Title: Ubuntu 7.10 is installed
Description: Ubuntu 7.10 is installed
Family: unix Class: inventory
Reference(s): cpe:/o:ubuntu:ubuntu_linux:7.10
Version: 3
Platform(s): Ubuntu 7.10
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13748