There are even more format string problems:
CVE-2006-2230:
Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine
0.99.4 might allow attackers to cause a denial of service via format
string specifiers in an MP3 filename specified on the command line.
NOTE: this is a different
This is CVE-2006-1905. Please mention the CVE id in the changelog.
Thanks.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Package: xine-ui
Version: 0.99.3-1.3
Severity: serious
Posted to xine-devel by Diego Pettenó [EMAIL PROTECTED]:
: Seems like there's disclosure of a vulnerability in latest released xine-ui
: (0.99.4) at http://www.open-security.org/advisories/16 . The code that's
: there referred to is already
3 matches
Mail list logo
