Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD51D1D428-42F0-11DE-AD22-000E35248AD7
HistoryFeb 15, 2009 - 12:00 a.m.

libxine -- multiple vulnerabilities

2009-02-1500:00:00
vuxml.freebsd.org
17

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.096 Low

EPSS

Percentile

94.8%

JSON

Multiple vulnerabilities were fixed in libxine 1.1.16.2.
Tobias Klein reports:

FFmpeg contains a type conversion vulnerability while
parsing malformed 4X movie files. The vulnerability may be
exploited by a (remote) attacker to execute arbitrary code in
the context of FFmpeg or an application using the FFmpeg
library.
Note: A similar issue also affects xine-lib < version
1.1.16.2.

xine developers report:

Fix broken size checks in various input plugins (ref.
CVE-2008-5239).
More malloc checking (ref. CVE-2008-5240).

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchlibxine< 1.1.16.2UNKNOWN

Related

nessus 22
openvas 32
ubuntu 3
fedora 4
ubuntucve 7
cve 4
prion 4
cvelist 4
nvd 4
debiancve 1
gentoo 1
nessus
nessus
FreeBSD : libxine -- multiple vulnerabilities (51d1d428-42f0-11de-ad22-000e35248ad7)
2009-05-18 00:00:00
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : xine-lib vulnerability (USN-746-1)
2009-04-23 00:00:00
Fedora 10 : xine-lib-1.1.16-1.fc10 (2009-0483)
2009-04-23 00:00:00
openvas
openvas
FreeBSD Ports: libxine
2009-05-20 00:00:00
FreeBSD Ports: libxine
2009-05-20 00:00:00
Ubuntu: Security Advisory (USN-746-1)
2009-04-06 00:00:00
ubuntu
ubuntu
xine-lib vulnerability
2009-03-26 00:00:00
xine-lib vulnerabilities
2009-04-20 00:00:00
xine-lib vulnerabilities
2009-01-26 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: xine-lib-1.1.16-1.fc10
2009-01-15 03:02:41
[SECURITY] Fedora 9 Update: xine-lib-1.1.16-1.fc9.1
2009-01-15 03:07:21
[SECURITY] Fedora 10 Update: xine-lib-1.1.16.2-1.fc10
2009-02-12 20:36:47
ubuntucve
ubuntucve
CVE-2009-0698
2009-02-23 00:00:00
CVE-2008-5239
2008-11-26 00:00:00
CVE-2008-5242
2008-11-25 00:00:00
cve
cve
CVE-2008-5234
2008-11-26 01:30:00
CVE-2008-5240
2008-11-26 01:30:00
CVE-2008-5239
2008-11-26 01:30:00
prion
prion
Heap overflow
2008-11-26 01:30:00
Null pointer dereference
2008-11-26 01:30:00
Heap overflow
2008-11-26 01:30:00
cvelist
cvelist
CVE-2008-5234
2008-11-26 01:00:00
CVE-2008-5239
2008-11-26 01:00:00
CVE-2008-5240
2008-11-26 01:00:00
nvd
nvd
CVE-2008-5234
2008-11-26 01:30:00
CVE-2008-5240
2008-11-26 01:30:00
CVE-2008-5239
2008-11-26 01:30:00
debiancve
debiancve
CVE-2009-0698
2009-02-23 15:30:04
gentoo
gentoo
xine-lib: User-assisted execution of arbitrary code
2010-06-01 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.096 Low

EPSS

Percentile

94.8%

JSON
Related for 51D1D428-42F0-11DE-AD22-000E35248AD7
nessus22openvas32ubuntu3fedora4ubuntucve7cve4prion4cvelist4nvd4debiancve1gentoo1