Launchpad CVE tracker

CVE 2008-5237

Multiple integer overflows in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via (1) crafted width and height values that are not validated by the mymng_process_header function in demux_mng.c before use in an allocation calculation or (2) crafted current_atom_size and string_size values processed by the parse_reference_atom function in demux_qt.c for an RDRF_ATOM string.

Related bugs and status

CVE-2008-5237 (Candidate) is related to these bugs:

Bug #290768: C format string specifications mismatch in translations crashes libxine based apps in some loales

		In	Importance	Status
290768	C format string specifications mismatch in translations crashes libxine based apps in some loales	xine-lib (Ubuntu)	High	Fix Released
290768	C format string specifications mismatch in translations crashes libxine based apps in some loales	langpack-o-matic	Undecided	Fix Released
290768	C format string specifications mismatch in translations crashes libxine based apps in some loales	xine-lib (Ubuntu Intrepid)	Undecided	Fix Released
290768	C format string specifications mismatch in translations crashes libxine based apps in some loales	language-pack-gnome-it-base (Ubuntu)	Undecided	Fix Released
290768	C format string specifications mismatch in translations crashes libxine based apps in some loales	language-pack-gnome-it-base (Ubuntu Intrepid)	Undecided	Fix Released
290768	C format string specifications mismatch in translations crashes libxine based apps in some loales	language-pack-gnome-de-base (Ubuntu)	Undecided	Fix Released
290768	C format string specifications mismatch in translations crashes libxine based apps in some loales	language-pack-gnome-de-base (Ubuntu Intrepid)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2008-5237

References