Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
xine-lib Multiple Vulnerabilities
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
The host is installed with xine-lib, which prone to multiple vulnerabilities.
Insight
Insight
The flaws are due to, - errors when processing malformed Ogg files in demux_ogg_send_chunk() and send_header() functions in src/demuxers/demux_ogg.c - error when processing malformed V4L video in open_video_capture_device() function in src/input/input_v4l.c file. - error when processing malformed ID3 data in id3v22_interp_frame(), id3v23_interp_frame(), and id3v24_interp_frame() functions in src/demuxers/id3.c file. - error when processing malformed Real file in demux_real_send_chunk() function in src/demuxers/demux_real.c file.
Affected Software
Affected Software
xine-lib versions prior to 1.1.15 on Linux (All).
Solution
Solution
Upgrade to xine-lib version 1.1.15.