Mandriva Linux Security Advisory : xine-lib (MDVSA-2008:020)

critical Nessus Plugin ID 36277

Synopsis

The remote Mandriva Linux host is missing one or more security updates.

Description

Two vulnerabilities discovered in xine-lib allow remote execution of arbitrary code :

Heap-based buffer overflow in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 and earlier allows remote attackers to execute arbitrary code via the SDP Abstract attribute, related to the rmff_dump_header function and related to disregarding the max field. (CVE-2008-0225)

Multiple heap-based buffer overflows in the rmff_dump_cont function in input/libreal/rmff.c in xine-lib 1.1.9 allow remote attackers to execute arbitrary code via the SDP (1) Title, (2) Author, or (3) Copyright attribute, related to the rmff_dump_header function, different vectors than CVE-2008-0225. (CVE-2008-0238)

Besides those security issues, the xine-lib provided in Mandriva Linux 2008.0 and 2007.1 did not automatically use Real binary codecs, when the user had them installed in /usr/lib64/real on x86_64 architecture.
Also, xine-lib of Mandriva Linux 2007.1 did not automatically use the Real codecs from /usr/lib/RealPlayer10GOLD/codecs, which is provided by RealPlayer package of Mandriva Powerpack editions.

The updated packages fix these issues.

Solution

Update the affected packages.

Plugin Details

Severity: Critical

ID: 36277

File Name: mandriva_MDVSA-2008-020.nasl

Version: 1.15

Type: local

Published: 4/23/2009

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:lib64xine1-devel, p-cpe:/a:mandriva:linux:libxine-devel, p-cpe:/a:mandriva:linux:libxine1, p-cpe:/a:mandriva:linux:libxine1-devel, p-cpe:/a:mandriva:linux:xine-aa, p-cpe:/a:mandriva:linux:xine-arts, p-cpe:/a:mandriva:linux:xine-caca, p-cpe:/a:mandriva:linux:xine-dxr3, p-cpe:/a:mandriva:linux:xine-esd, p-cpe:/a:mandriva:linux:xine-flac, p-cpe:/a:mandriva:linux:xine-gnomevfs, p-cpe:/a:mandriva:linux:xine-image, p-cpe:/a:mandriva:linux:xine-jack, p-cpe:/a:mandriva:linux:xine-plugins, p-cpe:/a:mandriva:linux:xine-pulse, p-cpe:/a:mandriva:linux:xine-sdl, p-cpe:/a:mandriva:linux:xine-smb, cpe:/o:mandriva:linux:2007.1, cpe:/o:mandriva:linux:2008.0, p-cpe:/a:mandriva:linux:lib64xine-devel, p-cpe:/a:mandriva:linux:lib64xine1

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 1/22/2008

Reference Information

CVE: CVE-2008-0225, CVE-2008-0235, CVE-2008-0238

CWE: 119, 94

MDVSA: 2008:020