Oval Definition:oval:org.opensuse.security:def:20085238
Revision Date:2017-09-27Version:1
Title:CVE-2008-5238
Description:

Integer overflow in the real_parse_mdpr function in demux_real.c in xine-lib 1.1.12, and other versions before 1.1.15, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted stream_name_size field.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-5238
Platform(s):Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
Novell Linux Desktop 9 SDK for x86
Novell Linux Desktop 9 SDK for x86_64
openSUSE 10.3
openSUSE 11.0
SLES SDK 9 for IBM iSeries and IBM pSeries
SLES SDK 9 for IBM S/390 and IBM zSeries
SLES SDK 9 for IBM zSeries
SLES SDK 9 for IPF
SLES SDK 9 for x86
SLES SDK 9 for X86-64
SUSE Linux Enterprise SDK 10 SP2
Product(s):
Definition Synopsis
  • sles10-sp2-sdk is installed
  • AND Package Information
  • xine-devel less than 1.1.1-24.43
  • OR xine-extra less than 1.1.1-24.43
  • OR xine-lib-32bit less than 1.1.1-24.43
  • OR xine-lib-64bit less than 1.1.1-24.43
  • OR xine-lib-x86 less than 1.1.1-24.43
  • OR xine-lib less than 1.1.1-24.43
  • OR xine-ui less than 0.99.4-32.39
    • BACK