Candidate: CVE-2008-5245
PublicDate: 2008-11-26 01:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5245
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=498243
Description:
 xine-lib before 1.1.15 performs V4L video frame preallocation before
 ascertaining the required length, which has unknown impact and attack
 vectors, possibly related to a buffer overflow in the
 open_video_capture_device function in src/input/input_v4l.c.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_xine-lib:
 vendor: http://hg.debian.org/hg/xine-lib/pkg/xine-lib-deb?cmd=changeset;node=b7aa9aacefb0;style=gitweb
upstream_xine-lib: released (1.1.15)
dapper_xine-lib: not-affected (doesn't allocate video frames)
gutsy_xine-lib: not-affected (doesn't allocate video frames)
hardy_xine-lib: not-affected (doesn't allocate video frames)
intrepid_xine-lib: not-affected (1.1.15-0ubuntu1)
devel_xine-lib: not-affected (1.1.15-0ubuntu1)