Search CVE reports
41 – 50 of 53 results
CVE-2007-1246
Unknown priorityThe DMO_VideoDecoder_Open function in loader/dmo/DMO_VideoDecoder.c in MPlayer 1.0rc1 and earlier, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote attackers to cause a buffer...
2 affected packages
mplayer, xine-lib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mplayer | — | — | — | — | — |
| xine-lib | — | — | — | — | — |
CVE-2006-6172
Medium priorityBuffer overflow in the asmrp_eval function in the RealMedia RTSP stream handler (asmrp.c) for Real Media input plugin, as used in (1) xine/xine-lib, (2) MPlayer 1.0rc1 and earlier, and possibly others, allows remote attackers to...
2 affected packages
mplayer, xine-lib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| mplayer | — | — | — | — | — |
| xine-lib | — | — | — | — | — |
CVE-2006-4800
Unknown prioritySome fixes available 3 of 7
Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3)...
5 affected packages
ffmpeg, gst-ffmpeg, gstreamer0.10-ffmpeg, kino, xine-lib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| gst-ffmpeg | — | — | — | — | — |
| gstreamer0.10-ffmpeg | — | — | — | — | — |
| kino | — | — | — | — | — |
| xine-lib | — | — | — | — | — |
CVE-2006-4799
Unknown priorityBuffer overflow in ffmpeg for xine-lib before 1.1.2 might allow context-dependent attackers to execute arbitrary code via a crafted AVI file and "bad indexes", a different vulnerability than CVE-2005-4048 and CVE-2006-2802.
1 affected packages
xine-lib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xine-lib | — | — | — | — | — |
CVE-2006-2802
Unknown prioritySome fixes available 10 of 11
Buffer overflow in the HTTP Plugin (xineplug_inp_http.so) for xine-lib 1.1.1 allows remote attackers to cause a denial of service (application crash) via a long reply from an HTTP server, as demonstrated using gxine 0.5.6.
2 affected packages
xine-extracodecs, xine-lib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xine-extracodecs | — | — | — | — | — |
| xine-lib | — | — | — | — | — |
CVE-2006-1664
Unknown priorityBuffer overflow in xine_list_delete_current in libxine 1.14 and earlier, as distributed in xine-lib 1.1.1 and earlier, allows remote attackers to execute arbitrary code via a crafted MPEG stream.
1 affected packages
xine-lib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xine-lib | — | — | — | — | — |
CVE-2006-0459
Unknown prioritySome fixes available 14 of 15
flex.skl in Will Estes and John Millaway Fast Lexical Analyzer Generator (flex) before 2.5.33 does not allocate enough memory for grammars containing (1) REJECT statements or (2) trailing context rules, which causes flex to...
8 affected packages
cyrus21-imapd, flex, flex-old, gcc-3.3, gcc-3.4...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| cyrus21-imapd | — | — | — | — | — |
| flex | — | — | — | — | — |
| flex-old | — | — | — | — | — |
| gcc-3.3 | — | — | — | — | — |
| gcc-3.4 | — | — | — | — | — |
| gob2 | — | — | — | — | — |
| xine-extracodecs | — | — | — | — | — |
| xine-lib | — | — | — | — | — |
CVE-2005-4048
Medium prioritySome fixes available 34 of 35
Heap-based buffer overflow in the avcodec_default_get_buffer function (utils.c) in FFmpeg libavcodec 0.4.9-pre1 and earlier, as used in products such as (1) mplayer, (2) xine-lib, (3) Xmovie, and (4) GStreamer, allows remote...
7 affected packages
ffmpeg, gst-ffmpeg, gstreamer0.10-ffmpeg, kino, vlc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| gst-ffmpeg | — | — | — | — | — |
| gstreamer0.10-ffmpeg | — | — | — | — | — |
| kino | — | — | — | — | — |
| vlc | — | — | — | — | — |
| xine-extracodecs | — | — | — | — | — |
| xine-lib | — | — | — | — | — |
CVE-2005-2967
Unknown priorityFormat string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 through 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses...
2 affected packages
xine-extracodecs, xine-lib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xine-extracodecs | — | — | — | — | — |
| xine-lib | — | — | — | — | — |
CVE-2005-1195
Unknown priorityMultiple heap-based buffer overflows in the code used to handle (1) MMS over TCP (MMST) streams or (2) RealMedia RTSP streams in xine-lib before 1.0, and other products that use xine-lib such as MPlayer 1.0pre6 and earlier, allow...
2 affected packages
xine-extracodecs, xine-lib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xine-extracodecs | — | — | — | — | — |
| xine-lib | — | — | — | — | — |