CVE-2008-5244 (retired)

Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact and
attack vectors related to libfaad. NOTE: due to the lack of details, it is
not clear whether this is an issue in xine-lib or in libfaad.
 mdeslaur> Same AAC issue as the first part of CVE-2008-4610
 mdeslaur> looks like debian fixed this by building xine-lib with the system
 mdeslaur> faad, which is in universe for us...
 mdeslaur> Tester is lol-vlc.aac. Doesn't crash intrepid.
 mdeslaur> xine 1.1.15 updated built-in libfaad to get rid of crashers
 mdeslaur> Not sure what to do for older versions...
Source: faad2 (LP Ubuntu Debian)
Upstream:not-affected (2.6.1)
More Information

Updated: 2019-03-26 11:46:01 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)