PNM Handler Negative Read Length Heap Overflow Vulnerability
“…Remote exploitation of a buffer overflow in version 0.99.2 of xine could allow execution of arbitrary code….
xine-lib 1-rc8 was released to address this vulnerability and is
available for download at:
http://xinehq.de/index.php/releases
An xine patch for this vulnerability is available at:
http://cvs.sourceforge.net/viewcvs.py/ xine/xine-lib/src/input/pnm.c?r1=1.20&r2=1.21
An MPlayer patch for this vulnerability is available at:
http://www.mplayerhq.hu/MPlayer/patches/pnm_fix_20041215.diff”
Multiple Vendor Xine version 0.99.2 PNM Handler PNA_TAG Heap Overflow Vulnerability
“…Remote exploitation of a buffer overflow in version 0.99.2 of xine could allow execution of arbitrary code.
xine-lib 1-rc8 was released to address this vulnerability and is
available for download at:
http://xinehq.de/index.php/releases”
An xine patch for this vulnerability is available at:
http://cvs.sourceforge.net/viewcvs.py/ xine/xine-lib/src/input/pnm.c?r1=1.20&r2=1.21
An MPlayer patch for this vulnerability is available at:
http://www.mplayerhq.hu/MPlayer/patches/pnm_fix_20041215.diff“
