CVE-2008-0238

Priority
Description
Multiple heap-based buffer overflows in the rmff_dump_cont function in
input/libreal/rmff.c in xine-lib 1.1.9 allow remote attackers to execute
arbitrary code via the SDP (1) Title, (2) Author, or (3) Copyright
attribute, related to the rmff_dump_header function, different vectors than
CVE-2008-0225. NOTE: the provenance of this information is unknown; the
details are obtained solely from third party information.
Assigned-to
jdstrand
Notes
Package
Upstream:not-affected
Patches:
Vendor:http://www.mandriva.com/security/advisories?name=MDVSA-2008:020
Package
Upstream:released (1.1.9.1)
More Information

Updated: 2020-09-10 00:35:32 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)