FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libxine -- multiple vulnerabilities

Affected packages
		libxine	<	1.1.16.3

Details

VuXML ID	48e14d86-42f1-11de-ad22-000e35248ad7
Discovery	2009-04-04
Entry	2009-05-17

xine developers report:

Fix another possible int overflow in the 4XM demuxer. (ref. TKADV2009-004, CVE-2009-0385)

Fix an integer overflow in the Quicktime demuxer.

[source]

References

CVE Name	CVE-2009-0385
CVE Name	CVE-2009-1274
URL	http://sourceforge.net/project/shownotes.php?release_id=660071
URL	http://trapkit.de/advisories/TKADV2009-004.txt
URL	http://trapkit.de/advisories/TKADV2009-005.txt