Summary
The remote host is missing an update to xine-lib
announced via advisory FEDORA-2009-1525.
Solution
Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update xine-lib' at the command line.
For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-1525
Insight
This package contains the Xine library. It can be used to play back various media, decode multimedia files from local disk drives, and display multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some uncommon formats, too.
Update Information:
This release contains one new security fix (CVE-2008-5240) and corrections of previous security fixes. It also includes fixes for race conditions in gapless_switch (ref. kde bug #180339) See also:
http://sourceforge.net/project/shownotes.php?group_id=9655&release_id=660071
ChangeLog:
* Tue Feb 10 2009 Rex Dieter - 1.1.16.2-1
- xine-lib-1.1.16.2
* Mon Feb 9 2009 Rex Dieter - 1.1.16.1-4
- gapless-race-fix patch (kdebug#180339)
* Sat Feb 7 2009 Rex Dieter - 1.1.16.1-3
- safe-audio-pause patch (kdebug#180339)
* Mon Jan 26 2009 Rex Dieter - 1.1.16.1-2
- Provides: xine-lib(plugin-abi)%{?_isa} = %{abiver} - touchup Summary/Description
* Fri Jan 23 2009 Rex Dieter - 1.1.16.1-1
- xine-lib-1.1.16.1
- include avsync patch (#470568)
* Sun Jan 18 2009 Rex Dieter - 1.1.16-2
- drop deepbind patch (#480504)
- caca support (EPEL)
* Wed Jan 7 2009 Kevin Kofler - 1.1.16-1.1
- patch for old libcaca in F9-
* Wed Jan 7 2009 Rex Dieter - 1.1.16-1
- xine-lib-1.1.16, plugin ABI 1.25
- --with-external-libdvdnav, include mpeg demuxers (#213597) * Fri Dec 12 2008 Rex Dieter - 1.1.15-4
- rebuild for pkgconfig deps
Severity
Classification
-
CVE CVE-2008-5240 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities