Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-0698HistoryFeb 23, 2009 - 3:30 p.m.
CVE-2009-0698
2009-02-2315:30:04
Debian Security Bug Tracker
security-tracker.debian.org
14
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.495 Medium
EPSS
Percentile
97.5%
Integer overflow in the 4xm demuxer (demuxers/demux_4xm.c) in xine-lib 1.1.16.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a 4X movie file with a large current_track value, a similar issue to CVE-2009-0385.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | vlc | <Β 3.0.21-0+deb12u1 | vlc_3.0.21-0+deb12u1_all.deb |
| Debian | 11 | all | vlc | <Β 3.0.21-0+deb11u1 | vlc_3.0.21-0+deb11u1_all.deb |
| Debian | 999 | all | vlc | <Β 3.0.21-1 | vlc_3.0.21-1_all.deb |
| Debian | 13 | all | vlc | <Β 3.0.21-1 | vlc_3.0.21-1_all.deb |
Related
cve
cve
CVE-2009-0698
2009-02-23 15:30:04
CVE-2009-0385
2009-02-02 19:30:00
cvelist
cvelist
CVE-2009-0698
2009-02-23 15:00:00
CVE-2009-0385
2009-02-02 19:00:00
prion
prion
Integer overflow
2009-02-23 15:30:00
Integer overflow
2009-02-02 19:30:00
nvd
nvd
CVE-2009-0698
2009-02-23 15:30:04
CVE-2009-0385
2009-02-02 19:30:00
openvas
openvas
Mandriva Security Advisory MDVSA-2009:299 (xine-lib)
2009-11-17 00:00:00
Mandriva Security Advisory MDVSA-2009:299 (xine-lib)
2009-11-17 00:00:00
FreeBSD Ports: libxine
2009-05-20 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : xine-lib (MDVSA-2009:299)
2009-11-16 00:00:00
openSUSE Security Update : libxine-devel (libxine-devel-582)
2009-07-21 00:00:00
SuSE 11 Security Update : Xine (SAT Patch Number 643)
2009-09-24 00:00:00
ubuntucve
ubuntucve
debiancve
debiancve
CVE-2009-0385
2009-02-02 19:30:00
freebsd
freebsd
ffmpeg -- 4xm processing memory corruption vulnerability
2009-01-28 00:00:00
libxine -- multiple vulnerabilities
2009-04-04 00:00:00
libxine -- multiple vulnerabilities
2009-02-15 00:00:00
checkpoint_advisories
checkpoint_advisories
FFmpeg 4xm Processing Memory Corruption (CVE-2009-0385)
2009-11-03 00:00:00
seebug
seebug
FFmpeg 4xmζ仢解ζε
εη ΄εζΌζ΄
2009-02-19 00:00:00
slackware
slackware
xine-lib
2009-04-07 23:31:21
ubuntu
ubuntu
xine-lib vulnerabilities
2009-04-20 00:00:00
xine-lib vulnerability
2009-03-26 00:00:00
FFmpeg vulnerabilities
2009-03-16 00:00:00
osv
osv
ffmpeg ffmpeg-debian - arbitrary code execution
2009-04-29 00:00:00
mplayer - arbitrary code execution
2009-04-29 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: xine-lib-1.1.16.3-1.fc10
2009-04-09 16:08:28
[SECURITY] Fedora 9 Update: xine-lib-1.1.16.3-1.fc9
2009-04-09 16:07:39
debian
debian
[SECURITY] [DSA 1782-1] New mplayer packages fix arbitrary code execution
2009-04-29 07:01:08
gentoo
gentoo
FFmpeg: Multiple vulnerabilities
2009-03-19 00:00:00
xine-lib: User-assisted execution of arbitrary code
2010-06-01 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.495 Medium
EPSS
Percentile
97.5%
Related for DEBIANCVE:CVE-2009-0698