Oval Definition:oval:org.opensuse.security:def:20080486
Revision Date:2021-08-15Version:1
Title:CVE-2008-0486
Description:

Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-0486
Mitre CVE-2008-0486
SUSE CVE-2008-0486
SUSE-SR:2008:006
SUSE-SR:2008:006
Platform(s):openSUSE 10.2
SUSE LINUX 10.1
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP4
SUSE Linux Enterprise Software Development Kit 11 SP4
Product(s):
Definition Synopsis
  • suse101 is installed
  • AND Package Information
  • xine-devel less than 1.1.1-24.29
  • OR xine-extra less than 1.1.1-24.29
  • OR xine-lib-32bit less than 1.1.1-24.29
  • OR xine-lib-64bit less than 1.1.1-24.29
  • OR xine-lib less than 1.1.1-24.29
  • OR xine-ui less than 0.99.4-32.25
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • libxine-devel-1.1.15-23.3 is installed
  • OR libxine1-1.1.15-23.3 is installed
  • OR libxine1-32bit-1.1.15-23.3 is installed
  • OR libxine1-gnome-vfs-1.1.15-23.3 is installed
  • OR libxine1-pulse-1.1.15-23.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • libxine-devel-1.1.15-23.3.9 is installed
  • OR libxine1-1.1.15-23.3.9 is installed
  • OR libxine1-32bit-1.1.15-23.3.9 is installed
  • OR libxine1-gnome-vfs-1.1.15-23.3.9 is installed
  • OR libxine1-pulse-1.1.15-23.3.9 is installed
    • BACK