Gentoo Archives: gentoo-announce

From: Sune Kloppenborg Jeppesen <jaervosz@g.o>
To: gentoo-announce@l.g.o
Cc: bugtraq@×××××××××××××.com, full-disclosure@××××××××××××××.uk, security-alerts@×××××××××××××.com
Subject: [gentoo-announce] [ GLSA 200510-08 ] xine-lib: Format string vulnerability
Date: Sat, 08 Oct 2005 16:22:25
Message-Id: 200510081808.38631.jaervosz@gentoo.org
1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2 Gentoo Linux Security Advisory GLSA 200510-08
3 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4 http://security.gentoo.org/
5 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7 Severity: Normal
8 Title: xine-lib: Format string vulnerability
9 Date: October 08, 2005
10 Bugs: #107854
11 ID: 200510-08
12
13 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
14
15 Synopsis
16 ========
17
18 xine-lib contains a format string error in CDDB response handling that
19 may be exploited to execute arbitrary code.
20
21 Background
22 ==========
23
24 xine-lib is a multimedia library which can be utilized to create
25 multimedia frontends. It includes functions to retrieve information
26 about audio CD contents from public CDDB servers.
27
28 Affected packages
29 =================
30
31 -------------------------------------------------------------------
32 Package / Vulnerable / Unaffected
33 -------------------------------------------------------------------
34 1 media-libs/xine-lib < 1.1.0-r5 >= 1.1.0-r5
35 *>= 1.0.1-r4
36 *>= 1_rc8-r2
37
38 Description
39 ===========
40
41 Ulf Harnhammar discovered a format string bug in the routines handling
42 CDDB server response contents.
43
44 Impact
45 ======
46
47 An attacker could submit malicious information about an audio CD to a
48 public CDDB server (or impersonate a public CDDB server). When the
49 victim plays this CD on a multimedia frontend relying on xine-lib, it
50 could end up executing arbitrary code.
51
52 Workaround
53 ==========
54
55 There is no known workaround at this time.
56
57 Resolution
58 ==========
59
60 All xine-lib users should upgrade to the latest version:
61
62 # emerge --sync
63 # emerge --ask --oneshot --verbose media-libs/xine-lib
64
65 References
66 ==========
67
68 [ 1 ] CAN-2005-2967
69 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2967
70
71 Availability
72 ============
73
74 This GLSA and any updates to it are available for viewing at
75 the Gentoo Security Website:
76
77 http://security.gentoo.org/glsa/glsa-200510-08.xml
78
79 Concerns?
80 =========
81
82 Security is a primary focus of Gentoo Linux and ensuring the
83 confidentiality and security of our users machines is of utmost
84 importance to us. Any security concerns should be addressed to
85 security@g.o or alternatively, you may file a bug at
86 http://bugs.gentoo.org.
87
88 License
89 =======
90
91 Copyright 2005 Gentoo Foundation, Inc; referenced text
92 belongs to its owner(s).
93
94 The contents of this document are licensed under the
95 Creative Commons - Attribution / Share Alike license.
96
97 http://creativecommons.org/licenses/by-sa/2.0