aboutsummaryrefslogtreecommitdiffstats
path: root/security/vuxml
diff options
context:
space:
mode:
authornobutaka <nobutaka@FreeBSD.org>2008-10-19 21:21:11 +0800
committernobutaka <nobutaka@FreeBSD.org>2008-10-19 21:21:11 +0800
commit47ec801511b539782e3fd878a7a18d3a0965e9a0 (patch)
treebac97e685599bc42f5e1326a0cf7832d673f800e /security/vuxml
parentf0fe3d9319834e9aeeb67e4cf4d1b9b580605369 (diff)
downloadfreebsd-ports-graphics-47ec801511b539782e3fd878a7a18d3a0965e9a0.tar.gz
freebsd-ports-graphics-47ec801511b539782e3fd878a7a18d3a0965e9a0.tar.zst
freebsd-ports-graphics-47ec801511b539782e3fd878a7a18d3a0965e9a0.zip
Document libxine denial of service vulnerability.
Diffstat (limited to 'security/vuxml')
-rw-r--r--security/vuxml/vuln.xml30
1 files changed, 30 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index c475b3cb462..fcb6b48e805 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -34,6 +34,36 @@ Note: Please add new entries to the beginning of this file.
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="06eac338-9ddf-11dd-813f-000e35248ad7">
+ <topic>libxine -- denial of service vulnerability</topic>
+ <affects>
+ <package>
+ <name>libxine</name>
+ <range><lt>1.1.15</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>xine team reports:</p>
+ <blockquote cite="http://www.xinehq.de/index.php/news">
+ <p>A new xine-lib version is now available. This release contains
+ some security fixes, notably a DoS via corrupted Ogg files
+ (CVE-2008-3231), some related fixes, and fixes for a few possible
+ buffer overflows. </p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2008-3231</cvename>
+ <url>http://www.xinehq.de/index.php/news</url>
+ <url>http://xforce.iss.net/xforce/xfdb/44040</url>
+ </references>
+ <dates>
+ <discovery>2008-07-13</discovery>
+ <entry>2008-10-19</entry>
+ </dates>
+ </vuln>
+
<vuln vid="78f456fd-9c87-11dd-a55e-00163e000016">
<topic>linux-flashplugin -- multiple vulnerabilities</topic>
<affects>