Ubuntu Update For Xine-lib Vulnerability USN-433-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-433-1

Solution

Please Install the Updated Packages.

Insight

Moritz Jodeit discovered that the DMO loader of Xine did not correctly validate the size of an allocated buffer. By tricking a user into opening a specially crafted media file, an attacker could execute arbitrary code with the user's privileges.

Affected

xine-lib vulnerability on Ubuntu 5.10 , Ubuntu 6.06 LTS , Ubuntu 6.10

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2007-March/000499.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-1246

CVSS	Base Score: 7.6 AV:N/AC:H/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for ekiga, gnomemeeting vulnerability USN-434-1
Ubuntu Update for Firefox 3.0 and Xulrunner vulnerabilities USN-920-1
Ubuntu Update for cups USN-1654-1
Ubuntu Update for apparmor update USN-1039-1
Ubuntu Update for apturl USN-1132-1

Ubuntu Update for xine-lib vulnerability USN-433-1

Take action and discover your vulnerabilities