[snip]
> 2. Possible overflow in the HTTP header parser
> Remote; possibly exploitable.
> This is an unchecked write past the end of a buffer which is used for
> receiving HTTP data from a remote server.
[snip]
Buggy patch, noticed and fixed in CVS HEAD by Matthias Hopf. Fixed patch
attached (ba
Package: libxine1
Version: 1.0.1-1
Severity: serious
Tags: security, patch
Two potential buffer overflows in xine-lib, both fixed in CVS HEAD. These
definitely affect 1.1.1, and look as if they affect 1.0.1 too. (These are
reported against 1.0.1-1 for that reason.)
1. Possible overflow via a spec
2 matches
Mail list logo