diff options
author | simon <simon@FreeBSD.org> | 2005-10-10 05:03:07 +0800 |
---|---|---|
committer | simon <simon@FreeBSD.org> | 2005-10-10 05:03:07 +0800 |
commit | f9bae4bdf96254247d2c89f5306febd658e27e61 (patch) | |
tree | 1438fa72db67b144862233f056df3be96d46fd3d /security/vuxml | |
parent | 1bc2a608aea5e41938bbca5c99df4047f21c95d2 (diff) | |
download | freebsd-ports-gnome-f9bae4bdf96254247d2c89f5306febd658e27e61.tar.gz freebsd-ports-gnome-f9bae4bdf96254247d2c89f5306febd658e27e61.tar.zst freebsd-ports-gnome-f9bae4bdf96254247d2c89f5306febd658e27e61.zip |
For libxine -- format string vulnerability entry:
- Add reference to xine security announcement.
- Fix indention on a few lines.
Diffstat (limited to 'security/vuxml')
-rw-r--r-- | security/vuxml/vuln.xml | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 251093352909..c1a5610d05a9 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -47,17 +47,18 @@ Note: Please add new entries to the beginning of this file. <p>Gentoo Linux Security Advisory reports:</p> <blockquote cite="http://www.gentoo.org/security/en/glsa/glsa-200510-08.xml"> <p>Ulf Harnhammar discovered a format string bug in the routines - handling CDDB server response contents.</p> - <p>An attacker could submit malicious information about an audio - CD to a public CDDB server (or impersonate a public CDDB server). - When the victim plays this CD on a multimedia frontend relying - on xine-lib, it could end up executing arbitrary code.</p> + handling CDDB server response contents.</p> + <p>An attacker could submit malicious information about an audio + CD to a public CDDB server (or impersonate a public CDDB server). + When the victim plays this CD on a multimedia frontend relying + on xine-lib, it could end up executing arbitrary code.</p> </blockquote> </body> </description> <references> <cvename>CAN-2005-2967</cvename> <url>http://www.gentoo.org/security/en/glsa/glsa-200510-08.xml</url> + <url>http://xinehq.de/index.php/security/XSA-2005-1</url> </references> <dates> <discovery>2005-10-08</discovery> |