aboutsummaryrefslogtreecommitdiffstats
path: root/security/vuxml
diff options
context:
space:
mode:
authorsimon <simon@FreeBSD.org>2005-10-10 05:03:07 +0800
committersimon <simon@FreeBSD.org>2005-10-10 05:03:07 +0800
commitf9bae4bdf96254247d2c89f5306febd658e27e61 (patch)
tree1438fa72db67b144862233f056df3be96d46fd3d /security/vuxml
parent1bc2a608aea5e41938bbca5c99df4047f21c95d2 (diff)
downloadfreebsd-ports-gnome-f9bae4bdf96254247d2c89f5306febd658e27e61.tar.gz
freebsd-ports-gnome-f9bae4bdf96254247d2c89f5306febd658e27e61.tar.zst
freebsd-ports-gnome-f9bae4bdf96254247d2c89f5306febd658e27e61.zip
For libxine -- format string vulnerability entry:
- Add reference to xine security announcement. - Fix indention on a few lines.
Diffstat (limited to 'security/vuxml')
-rw-r--r--security/vuxml/vuln.xml11
1 files changed, 6 insertions, 5 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 251093352909..c1a5610d05a9 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -47,17 +47,18 @@ Note: Please add new entries to the beginning of this file.
<p>Gentoo Linux Security Advisory reports:</p>
<blockquote cite="http://www.gentoo.org/security/en/glsa/glsa-200510-08.xml">
<p>Ulf Harnhammar discovered a format string bug in the routines
- handling CDDB server response contents.</p>
- <p>An attacker could submit malicious information about an audio
- CD to a public CDDB server (or impersonate a public CDDB server).
- When the victim plays this CD on a multimedia frontend relying
- on xine-lib, it could end up executing arbitrary code.</p>
+ handling CDDB server response contents.</p>
+ <p>An attacker could submit malicious information about an audio
+ CD to a public CDDB server (or impersonate a public CDDB server).
+ When the victim plays this CD on a multimedia frontend relying
+ on xine-lib, it could end up executing arbitrary code.</p>
</blockquote>
</body>
</description>
<references>
<cvename>CAN-2005-2967</cvename>
<url>http://www.gentoo.org/security/en/glsa/glsa-200510-08.xml</url>
+ <url>http://xinehq.de/index.php/security/XSA-2005-1</url>
</references>
<dates>
<discovery>2005-10-08</discovery>