Candidate: CVE-2008-5235
PublicDate: 2008-11-26 01:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5235
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=498243
Description:
 Heap-based buffer overflow in the demux_real_send_chunk function in
 src/demuxers/demux_real.c in xine-lib before 1.1.15 allows remote attackers
 to execute arbitrary code via a crafted Real Media file. NOTE: some of
 these details are obtained from third party information.
Ubuntu-Description:
Notes:
 mdeslaur> this looks like 1C
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_xine-lib:
 upstream: http://hg.debian.org/hg/xine-lib/xine-lib?cmd=changeset;node=1f961a5d8a7f3cc985109b1cb5faba59bd4d22cc;style=gitweb
upstream_xine-lib: released (1.1.15)
dapper_xine-lib: not-affected (code not present)
gutsy_xine-lib: not-affected (code not present)
hardy_xine-lib: not-affected (code not present)
intrepid_xine-lib: not-affected (1.1.15-0ubuntu1)
devel_xine-lib: not-affected (1.1.15-0ubuntu1)