| Revision Date: | 2017-09-27 | Version: | 1 |
| Title: | CVE-2008-5246 |
| Description: |
Multiple heap-based buffer overflows in xine-lib before 1.1.15 allow remote attackers to execute arbitrary code via vectors that send ID3 data to the (1) id3v22_interp_frame and (2) id3v24_interp_frame functions in src/demuxers/id3.c. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
|
| Family: | unix | Class: | vulnerability |
| Status: | | Reference(s): | CVE-2008-5246
|
| Platform(s): | Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
Novell Linux Desktop 9 SDK for x86
Novell Linux Desktop 9 SDK for x86_64
openSUSE 10.3
openSUSE 11.0
SLES SDK 9 for IBM iSeries and IBM pSeries
SLES SDK 9 for IBM S/390 and IBM zSeries
SLES SDK 9 for IBM zSeries
SLES SDK 9 for IPF
SLES SDK 9 for x86
SLES SDK 9 for X86-64
SUSE Linux Enterprise SDK 10 SP2
| Product(s): | |
| Definition Synopsis |
| sles10-sp2-sdk is installed AND Package Information
xine-devel less than 1.1.1-24.43
OR xine-extra less than 1.1.1-24.43
OR xine-lib-32bit less than 1.1.1-24.43
OR xine-lib-64bit less than 1.1.1-24.43
OR xine-lib-x86 less than 1.1.1-24.43
OR xine-lib less than 1.1.1-24.43
OR xine-ui less than 0.99.4-32.39
|