Xine-Lib HTTP Response Buffer Overflow Vulnerability
BID:18187
CVE-2006-2802 |Info
Xine-Lib HTTP Response Buffer Overflow Vulnerability
| Bugtraq ID: | 18187 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2006-2802 |
| Remote: | Yes |
| Local: | No |
| Published: | May 31 2006 12:00AM |
| Updated: | Mar 19 2015 08:23AM |
| Credit: | Federico L. Bossi Bonin <[email protected]> discovered this issue. |
| Vulnerable: |
xine xine-lib 1.1.1 xine xine-lib 1.1 xine xine-lib 1.0.2 xine xine-lib 1.0.1 xine gxine 0.5.6 Ubuntu Ubuntu Linux 5.10 powerpc Ubuntu Ubuntu Linux 5.10 i386 Ubuntu Ubuntu Linux 5.10 amd64 Ubuntu Ubuntu Linux 5.0 4 powerpc Ubuntu Ubuntu Linux 5.0 4 i386 Ubuntu Ubuntu Linux 5.0 4 amd64 Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 SuSE SUSE Linux Enterprise Server 8 Slackware Linux 10.2 Slackware Linux -current S.u.S.E. UnitedLinux 1.0 S.u.S.E. SuSE Linux Standard Server 8.0 S.u.S.E. SuSE Linux School Server for i386 S.u.S.E. SUSE LINUX Retail Solution 8.0 S.u.S.E. SuSE Linux Openexchange Server 4.0 S.u.S.E. SuSE Linux Open-Xchange 4.1 S.u.S.E. Open-Enterprise-Server 9.0 S.u.S.E. Open-Enterprise-Server 1 S.u.S.E. Office Server S.u.S.E. Novell Linux Desktop 9.0 S.u.S.E. Novell Linux Desktop 1.0 S.u.S.E. Linux Professional 10.0 OSS S.u.S.E. Linux Professional 10.0 S.u.S.E. Linux Professional 9.3 x86_64 S.u.S.E. Linux Professional 9.3 S.u.S.E. Linux Professional 9.2 x86_64 S.u.S.E. Linux Professional 9.2 S.u.S.E. Linux Professional 9.1 x86_64 S.u.S.E. Linux Professional 9.1 S.u.S.E. Linux Professional 10.1 S.u.S.E. Linux Personal 10.0 OSS S.u.S.E. Linux Personal 9.3 x86_64 S.u.S.E. Linux Personal 9.3 S.u.S.E. Linux Personal 9.2 x86_64 S.u.S.E. Linux Personal 9.1 S.u.S.E. Linux Personal 10.1 S.u.S.E. Linux Openexchange Server S.u.S.E. Linux Office Server S.u.S.E. Linux Enterprise Server for S/390 9.0 S.u.S.E. Linux Enterprise Server for S/390 S.u.S.E. Linux Desktop 1.0 S.u.S.E. Linux Database Server 0 Mandriva Linux Mandrake 2006.0 x86_64 Mandriva Linux Mandrake 2006.0 Mandriva Linux Mandrake 10.2 x86_64 Mandriva Linux Mandrake 10.2 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 Gentoo Linux Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 Debian Linux 3.0 sparc Debian Linux 3.0 s/390 Debian Linux 3.0 ppc Debian Linux 3.0 mipsel Debian Linux 3.0 mips Debian Linux 3.0 m68k Debian Linux 3.0 ia-64 Debian Linux 3.0 ia-32 Debian Linux 3.0 hppa Debian Linux 3.0 arm Debian Linux 3.0 alpha Debian Linux 3.0 |
| Not Vulnerable: | |
Discussion
Xine-Lib HTTP Response Buffer Overflow Vulnerability
The xine-lib library is susceptible to a buffer-overflow vulnerability. This issue is due to the software's failure to properly bounds-check user-supplied input data before copying it to an insufficiently sized memory buffer.
Successful exploits allow remote attackers to execute arbitrary machine code in the context of application using the affected library.
Versions of xine-lib greater than or equal to 1.0.1 are potentially affected by this issue, but information on specific affected versions is not currently available. Applications that use a vulnerable version of the library may also be affected. Version 0.5.6 of gxine is reportedly vulnerable to this issue.
The xine-lib library is susceptible to a buffer-overflow vulnerability. This issue is due to the software's failure to properly bounds-check user-supplied input data before copying it to an insufficiently sized memory buffer.
Successful exploits allow remote attackers to execute arbitrary machine code in the context of application using the affected library.
Versions of xine-lib greater than or equal to 1.0.1 are potentially affected by this issue, but information on specific affected versions is not currently available. Applications that use a vulnerable version of the library may also be affected. Version 0.5.6 of gxine is reportedly vulnerable to this issue.
Exploit / POC
Xine-Lib HTTP Response Buffer Overflow Vulnerability
A proof-of-concept exploit that causes a crash in affected applications is available.
A proof-of-concept exploit that causes a crash in affected applications is available.
Solution / Fix
Xine-Lib HTTP Response Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any official vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Please see the referenced advisories for more information.
xine xine-lib 1.0.1
xine xine-lib 1.1
xine xine-lib 1.1.1
Solution:
Currently we are not aware of any official vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Please see the referenced advisories for more information.
xine xine-lib 1.0.1
-
Debian libxine-dev_1.0.1-1sarge3_alpha.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1. 0.1-1sarge3_alpha.deb -
Debian libxine-dev_1.0.1-1sarge3_amd64.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1. 0.1-1sarge3_amd64.deb -
Debian libxine-dev_1.0.1-1sarge3_arm.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1. 0.1-1sarge3_arm.deb -
Debian libxine-dev_1.0.1-1sarge3_hppa.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1. 0.1-1sarge3_hppa.deb -
Debian libxine-dev_1.0.1-1sarge3_ia64.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1. 0.1-1sarge3_ia64.deb -
Debian libxine-dev_1.0.1-1sarge3_m68k.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1. 0.1-1sarge3_m68k.deb -
Debian libxine-dev_1.0.1-1sarge3_mips.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1. 0.1-1sarge3_mips.deb -
Debian libxine-dev_1.0.1-1sarge3_mipsel.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1. 0.1-1sarge3_mipsel.deb -
Debian libxine-dev_1.0.1-1sarge3_powerpc.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1. 0.1-1sarge3_powerpc.deb -
Debian libxine-dev_1.0.1-1sarge3_s390.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1. 0.1-1sarge3_s390.deb -
Debian libxine1_1.0.1-1sarge3_alpha.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_alpha.deb -
Debian libxine1_1.0.1-1sarge3_amd64.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_amd64.deb -
Debian libxine1_1.0.1-1sarge3_arm.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_arm.deb -
Debian libxine1_1.0.1-1sarge3_hppa.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_hppa.deb -
Debian libxine1_1.0.1-1sarge3_i386.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_i386.deb -
Debian libxine1_1.0.1-1sarge3_ia64.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_ia64.deb -
Debian libxine1_1.0.1-1sarge3_m68k.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_m68k.deb -
Debian libxine1_1.0.1-1sarge3_mips.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_mips.deb -
Debian libxine1_1.0.1-1sarge3_mipsel.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_mipsel.deb -
Debian libxine1_1.0.1-1sarge3_powerpc.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_powerpc.deb -
Debian libxine1_1.0.1-1sarge3_s390.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_s390.deb -
Debian libxine1_1.0.1-1sarge3_sparc.deb
Debian GNU/Linux 3.0 alias sarge
http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1 -1sarge3_sparc.deb -
Ubuntu libxine-dev_1.0.1-1ubuntu10.3_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0 .1-1ubuntu10.3_amd64.deb -
Ubuntu libxine-dev_1.0.1-1ubuntu10.3_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0 .1-1ubuntu10.3_i386.deb -
Ubuntu libxine-dev_1.0.1-1ubuntu10.3_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0 .1-1ubuntu10.3_powerpc.deb -
Ubuntu libxine1c2_1.0.1-1ubuntu10.3_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0. 1-1ubuntu10.3_amd64.deb -
Ubuntu libxine1c2_1.0.1-1ubuntu10.3_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0. 1-1ubuntu10.3_i386.deb -
Ubuntu libxine1c2_1.0.1-1ubuntu10.3_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0. 1-1ubuntu10.3_powerpc.deb
xine xine-lib 1.1
-
Mandriva lib64xine1-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva lib64xine1-devel-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva libxine1-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva libxine1-devel-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-aa-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-aa-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-arts-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-arts-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-dxr3-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-dxr3-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-esd-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-esd-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-flac-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-flac-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-gnomevfs-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-gnomevfs-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-image-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-image-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-lib-1.1.0-9.3.20060mdk.src.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-plugins-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-plugins-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-polyp-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-polyp-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-smb-1.1.0-9.3.20060mdk.i586.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download -
Mandriva xine-smb-1.1.0-9.3.20060mdk.x86_64.rpm
Mandriva Linux 2006.0:
http://www.mandriva.com/en/download
xine xine-lib 1.1.1
-
Ubuntu libxine-dev_1.1.1+ubuntu2-7.1_amd64.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1 .1+ubuntu2-7.1_amd64.deb -
Ubuntu libxine-dev_1.1.1+ubuntu2-7.1_i386.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1 .1+ubuntu2-7.1_i386.deb -
Ubuntu libxine-dev_1.1.1+ubuntu2-7.1_powerpc.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1 .1+ubuntu2-7.1_powerpc.deb -
Ubuntu libxine-main1_1.1.1+ubuntu2-7.1_amd64.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1 .1.1+ubuntu2-7.1_amd64.deb -
Ubuntu libxine-main1_1.1.1+ubuntu2-7.1_i386.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1 .1.1+ubuntu2-7.1_i386.deb -
Ubuntu libxine-main1_1.1.1+ubuntu2-7.1_powerpc.deb
Ubuntu 6.06 LTS:
http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1 .1.1+ubuntu2-7.1_powerpc.deb