Known Vulnerabilities for products from Xine
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Xine".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2009-1274 | Integer overflow in the qt_error parse_trak_atom function in demuxers/demux_qt.c in xine-lib 1.1.16.2 and earlier allows remo... | 5 - MEDIUM | 2009-04-08 | 2018-10-10 |
| CVE-2009-0698 | Integer overflow in the 4xm demuxer (demuxers/demux_4xm.c) in xine-lib 1.1.16.1 allows remote attackers to cause a denial of ... | 7.5 - HIGH | 2009-02-23 | 2018-10-10 |
| CVE-2008-5248 | xine-lib before 1.1.15 allows remote attackers to cause a denial of service (crash) via "MP3 files with metadata consisting o... | 4.3 - MEDIUM | 2008-11-26 | 2009-11-24 |
| CVE-2008-5247 | The real_parse_audio_specific_data function in demux_real.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, uses a... | 4.3 - MEDIUM | 2008-11-26 | 2018-10-11 |
| CVE-2008-5246 | Multiple heap-based buffer overflows in xine-lib before 1.1.15 allow remote attackers to execute arbitrary code via vectors t... | 9.3 - HIGH | 2008-11-26 | 2017-08-08 |
| CVE-2008-5245 | xine-lib before 1.1.15 performs V4L video frame preallocation before ascertaining the required length, which has unknown impa... | 9.3 - HIGH | 2008-11-26 | 2017-08-08 |
| CVE-2008-5244 | Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact and attack vectors related to libfaad. NOTE: due to t... | 10 - HIGH | 2008-11-26 | 2009-02-20 |
| CVE-2008-5243 | The real_parse_headers function in demux_real.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, relies on an untru... | 4.3 - MEDIUM | 2008-11-26 | 2018-10-11 |
| CVE-2008-5242 | demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, does not validate the count field before calling calloc... | 6.8 - MEDIUM | 2008-11-26 | 2018-10-11 |
| CVE-2008-5241 | Integer underflow in demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allows remote attackers to cause a... | 4.3 - MEDIUM | 2008-11-26 | 2018-10-11 |
| CVE-2008-5240 | xine-lib 1.1.12, and other 1.1.15 and earlier versions, relies on an untrusted input value to determine the memory allocation... | 4.3 - MEDIUM | 2008-11-26 | 2018-10-11 |
| CVE-2008-5239 | xine-lib 1.1.12, and other 1.1.15 and earlier versions, does not properly handle (a) negative and (b) zero values during unsp... | 4.3 - MEDIUM | 2008-11-26 | 2018-10-11 |
| CVE-2008-5238 | Integer overflow in the real_parse_mdpr function in demux_real.c in xine-lib 1.1.12, and other versions before 1.1.15, allows... | 7.1 - HIGH | 2008-11-26 | 2018-10-11 |
| CVE-2008-5237 | Multiple integer overflows in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allow remote attackers to cause a denia... | 10 - HIGH | 2008-11-26 | 2018-10-11 |
| CVE-2008-5236 | Multiple heap-based buffer overflows in xine-lib 1.1.12, and other 1.1.15 and earlier versions, allow remote attackers to exe... | 9.3 - HIGH | 2008-11-26 | 2018-10-11 |
| CVE-2008-5235 | Heap-based buffer overflow in the demux_real_send_chunk function in src/demuxers/demux_real.c in xine-lib before 1.1.15 allow... | 9.3 - HIGH | 2008-11-26 | 2011-03-08 |
| CVE-2008-5234 | Multiple heap-based buffer overflows in xine-lib 1.1.12, and other versions before 1.1.15, allow remote attackers to execute ... | 9.3 - HIGH | 2008-11-26 | 2018-10-11 |
| CVE-2008-5233 | xine-lib 1.1.12, and other versions before 1.1.15, does not check for failure of malloc in circumstances including (1) the my... | 4.3 - MEDIUM | 2008-11-26 | 2018-10-11 |
| CVE-2008-3231 | xine-lib before 1.1.15 allows remote attackers to cause a denial of service (crash) via a crafted OGG file, as demonstrated b... | 4.3 - MEDIUM | 2008-07-18 | 2017-08-08 |
| CVE-2008-1878 | Stack-based buffer overflow in the demux_nsf_send_chunk function in src/demuxers/demux_nsf.c in xine-lib 1.1.12 and earlier a... | 7.5 - HIGH | 2008-04-17 | 2017-09-29 |