Summary: | media-libs/xine-lib < 1.1.11 Array Indexing Vulnerability (CVE-2008-0073) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Diego Elio Pettenò (RETIRED) <flameeyes> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | bernd, yngwin |
Priority: | High | Keywords: | STABLEREQ |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://bugs.xine-project.org/show_bug.cgi?id=58 | ||
Whiteboard: | A2 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Diego Elio Pettenò (RETIRED)
2008-03-11 14:17:30 UTC
FWIW, the same vulnerability apply to VLC. Does VLC know, have a patch? Does xine have a patch? xine has a patch, the same patch should apply over VLC. I'm not sure if VLC is informed, I said that to secunia though people though. *** Bug 213928 has been marked as a duplicate of this bug. *** public now. media-lib/xine-lib-1.1.11.ebuild in cvs Arches please test and mark stable. Target KEYWORDS="alpha amd64 ~arm hppa ia64 ppc ppc64 sparc x86 ~x86-fbsd" (In reply to comment #6) > media-lib/xine-lib-1.1.11.ebuild in cvs That's not even a proper path if the directory was spelled right! :) =media-libs/xine-lib-1.1.11 will do nicely. x86 stable Stable for HPPA. amd64 stable alpha stable ppc64 stable ia64/sparc stable ppc stable, ready for glsa Fixed in release snapshot. request filed, will only be glsa'd after bug 214270 was fixed. GLSA 200808-01 |