Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2004-1187

Heap-based buffer overflow in the pnm_get_chunk function for xine 0.99.2, and other packages such as MPlayer that use the same code, allows remote attackers to execute arbitrary code via long PNA_TAG values, a different vulnerability than CVE-2004-1188.

Related bugs and status

CVE-2004-1187 (Candidate) is related to these bugs:

Bug #11248: libxine1: Security vulnerabilities in PNM and RTSP components

Summary				In	Importance	Status
	11248	libxine1: Security vulnerabilities in PNM and RTSP components		xine-lib (Ubuntu)	Medium	Fix Released
	11248	libxine1: Security vulnerabilities in PNM and RTSP components		xine-lib (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.mplayerhq.h...
MANDRAKE: MDKSA-2005:011
IDEFENSE: 20041221 Multiple Vend...
CONFIRM: http://cvs.sourceforge...
XF: xine-pnatag-bo(18640)