[snip]
2. Possible overflow in the HTTP header parser
Remote; possibly exploitable.
This is an unchecked write past the end of a buffer which is used for
receiving HTTP data from a remote server.
[snip]
Buggy patch, noticed and fixed in CVS HEAD by Matthias Hopf. Fixed patch
attached
Package: libxine1
Version: 1.0.1-1
Severity: serious
Tags: security, patch
Two potential buffer overflows in xine-lib, both fixed in CVS HEAD. These
definitely affect 1.1.1, and look as if they affect 1.0.1 too. (These are
reported against 1.0.1-1 for that reason.)
1. Possible overflow via a
2 matches
Mail list logo