xine-lib
Page content
- Vulnerable: 1.1.11-1kalgan2
- Unaffected: 1.1.11-1kalgan3
Guido Landi has discovered a vulnerability in xine-lib, which can be exploited by malicious people to compromise a user’s system. The vulnerability is caused due to a boundary error within the “demux_nsf_send_chunk()” function in src/demuxers/demux_nsf.c. This can be exploited to cause a stack-based buffer overflow via an overly long NSF title.
- Bug Tracker URL: http://bugs.frugalware.org/task/3027