Missing format string, possibly exploitable

Bug #41781 reported by Darren Salt on 2006-04-27
264
Affects Status Importance Assigned to Milestone
xine-ui (Debian)
Fix Released
Unknown
xine-ui (Ubuntu)
Critical
Ubuntu Security Team

Bug Description

http://www.open-security.org/advisories/16

Affects xine-ui 0.99.4 and earlier; fixed in CVS.
See the corresponding Debian bug for a patch.

CVE References

Chuck Short (zulcss) wrote :

I can get a patch for our particular version tonight, I have looked at the code and our version is affected.

Changed in xine-ui:
status: Unconfirmed → Confirmed
Simon Law (sfllaw) on 2006-04-28
Changed in xine-ui:
assignee: nobody → ubuntu-security
Sebastian Dröge (slomo) wrote :

Thanks for your effort but I already had a fixed version locally... did saw this bugreport too late.
This is uploaded and fixed now.

Changed in xine-ui:
status: Confirmed → Fix Released
Changed in xine-ui:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.