xine-lib is affected by a memory corruption vulnerability because it uses a variable without initialising it, this could be exploited by an attacker in order to execute arbitrary code on the target system with the privileges of the logged in user.
This is fixed in =media-libs/xine-lib-1.1.19.
media-video, are we ok to stabilize =media-libs/xine-lib-1.1.19. Thank you.
The stabilization is now being handled in bug #349608, eh.
all arch's done
GLSA request filed.
Surely this can be closed, as affected versions are no longer in portage?
This issue was resolved and addressed in
GLSA 201412-09 at http://security.gentoo.org/glsa/glsa-201412-09.xml
by GLSA coordinator Sean Amoss (ackle).