Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 209106
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Lars Hartmann <lars@chaotika.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 209106 depends on: Show dependency tree
Bug 209106 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2008-02-06 09:34 0000 
Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN
before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might
allow remote attackers to execute arbitrary code via a crafted FLAC tag, which
triggers a buffer overflow.

------- Comment #1 From Lars Hartmann 2008-02-06 09:35:12 0000 ------- 
maintainers - please advise

------- Comment #2 From Alexis Ballier 2008-02-09 10:48:42 0000 ------- 
xine-lib-1.1.10.1 in the tree should fix this:
Changes:
* Security fixes:
  - Array index vulnerability which may allow remote attackers to execute
    arbitrary code via a crafted FLAC tag, causing a stack buffer overflow.
    (CVE-2008-0486)
* Fix a RealPlayer codec detection bug.
* Improve detection of MP3 streams with ID3v2 tags. Don't trust the tag
  size.

------- Comment #3 From Sune Kloppenborg Jeppesen 2008-02-10 14:59:58 0000 ------- 
Is 1.1.10.1 ready for stable marking?

------- Comment #4 From Alexis Ballier 2008-02-10 15:07:20 0000 ------- 
(In reply to comment #3)
> Is 1.1.10.1 ready for stable marking?
> 

should be, its 1.1.10 plus the three bugfixes I cited

------- Comment #5 From Sune Kloppenborg Jeppesen 2008-02-10 15:16:02 0000 ------- 
Thx Alexis.

Arches please test and mark stable. Target keywords are:

xine-lib-1.1.10.1.ebuild:KEYWORDS="alpha amd64 arm hppa ia64 ppc ppc64 sparc
x86 ~x86-fbsd"

------- Comment #6 From Markus Meier 2008-02-10 16:14:54 0000 ------- 
x86 stable

------- Comment #7 From Tobias Scherbaum 2008-02-10 18:20:19 0000 ------- 
ppc stable

------- Comment #8 From Olivier Crete 2008-02-10 21:33:48 0000 ------- 
amd64 done

------- Comment #9 From Brent Baude 2008-02-11 03:11:42 0000 ------- 
ppc64 stable; thanks

------- Comment #10 From Jeroen Roovers 2008-02-12 22:40:00 0000 ------- 
Stable for HPPA.

------- Comment #11 From Ferris McCormick 2008-02-19 14:11:37 0000 ------- 
Sparc stable.

------- Comment #12 From Raúl Porcel 2008-02-19 16:49:26 0000 ------- 
alpha/ia64 stable, thanks Tobias

------- Comment #13 From Peter Volkov 2008-02-23 17:32:03 0000 ------- 
Fixed in release snapshot.

------- Comment #14 From Robert Buchholz 2008-02-26 22:56:12 0000 ------- 
GLSA 200802-12, thanks everyone.

------- Comment #15 From Robert Buchholz 2008-03-15 13:41:47 0000 ------- 
Please note that this update also fixed CVE-2008-1161.
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug