Gentoo Bug 217820 - media-libs/xine-lib, media-libs/speex (media-libs/libfishsound already fixed): Uncontrolled array index (CVE-2008-1686)

First Last Prev Next No search results available Search page Enter new bug

Bug#:	217820
Alias:
Product:
Component:
Status:	RESOLVED
Resolution:	DUPLICATE of bug 217715
Assigned To:	Gentoo Security <security@gentoo.org>

Hardware:
OS:
Version:
Priority:
Severity:

Reporter:	Hanno Boeck <hanno@gentoo.org>
Add CC:
CC:	Remove selected CCs

URL:
Summary:
Status Whiteboard:
Keywords:

Flags:			Requestee:
	Pending
	Approved
	Assigned_To		()

Filename	Description	Type	Creator	Created	Size	Actions
Create a New Attachment (proposed patch, testcase, etc.)						View All

Bug 217820 depends on:			Show dependency tree
Bug 217820 blocks:			Show dependency tree

Additional Comments: (this is where you put emerge --info)

Add to CC list

Not eligible to see or edit group visibility for this bug.

Leave as RESOLVED DUPLICATE
Reopen bug
Mark bug as VERIFIED
Mark bug as CLOSED

View Bug Activity | Format For Printing | XML | Clone This Bug

Description:

Opened: 2008-04-15 17:39 0000

Seems this piece of code is widely bundled.

xine-lib 1.1.12 mentions CVE in release announcement, so bump should do it.
libfishsound should be ok with in-portage version 0.9.1.
speex: unsure, probably unfixed.

------- Comment #1 From Samuli Suominen 2008-04-15 18:32:56 0000 -------

looks like duplicate of bug 217715

------- Comment #2 From Robert Buchholz 2008-04-15 21:53:19 0000 -------


*** This bug has been marked as a duplicate of bug 217715 ***

First Last Prev Next No search results available Search page Enter new bug

Bugzilla Bug 217820

media-libs/xine-lib, media-libs/speex (media-libs/libfishsound already fixed): Uncontrolled array index (CVE-2008-1686)

Last modified: 2008-04-15 21:53:19 0000