Xine-lib

— filed under: Security

An overflow was found in the Speex decoder that could lead to a crash or possible execution of arbitrary code.Xine-lib <= 1.1.12 was also found to be vulnerable to a stack-based bufferoverflow in the NES demuxer thanks to milw0rm.com).

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1686

Xine-lib 1.1.12 is now available from the testing repository.

Document Actions

Newsletter Signup: Get the latest release and security updates via email.

Releases: VectorLinux 6.0 alpha 0.5 is ready to test Aug 09, 2008; VectorLinux 5.9 LIGHT final has been released Jul 22, 2008; VL 5.9 Light RC2 released. Jun 29, 2008; VectorLinux-5.9-SOHO-DELUXE has been released! Jun 12, 2008; Wow! VL-Lite Rocks! May 25, 2008; More…

Security: Seamonkey-1.1.11 - Security update Jul 17, 2008; Seamonkey, GnuTLS and Ruby upgrades. Jul 15, 2008; Samba security update Jun 06, 2008; Rdesktop security update Jun 06, 2008; Mozilla Thunderbird Jun 04, 2008; More…