Mandriva update for xine-lib - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Mandriva update for xine-lib

Secunia Advisory:	SA28989
Release Date:	2008-02-18
Last Update:	2008-02-22

Critical:	Highly critical
Impact:	System access
Where:	From remote
Solution Status:	Vendor Patch


CVE reference:	CVE-2008-0486 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: Mandriva has issued an update for xine-lib. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system. For more information: SA28801 Solution: Apply updated packages. -- Mandriva Linux 2007.1 -- 178998f3f0d0452e0c041f496ba03dc8 2007.1/i586/libxine1-1.1.4-6.7mdv2007.1.i586.rpm c7f6f99a5fcb674e587081234dde21a7 2007.1/i586/libxine1-devel-1.1.4-6.7mdv2007.1.i586.rpm 678e9c99966c7edf7dd95e7c87305338 2007.1/i586/xine-aa-1.1.4-6.7mdv2007.1.i586.rpm 5aea25425105ca75d26ff8970ae02ad6 2007.1/i586/xine-arts-1.1.4-6.7mdv2007.1.i586.rpm c25a7c127828f31add319f645ad55b86 2007.1/i586/xine-caca-1.1.4-6.7mdv2007.1.i586.rpm eca85b0d9e6a79dfc58e6085315d1d32 2007.1/i586/xine-dxr3-1.1.4-6.7mdv2007.1.i586.rpm a711b0278a16de79e905cb95b9121521 2007.1/i586/xine-esd-1.1.4-6.7mdv2007.1.i586.rpm 26a905e33cfe9aa422da1684f6c0019b 2007.1/i586/xine-flac-1.1.4-6.7mdv2007.1.i586.rpm 6634b2c97e4e96afeb540778ea42d522 2007.1/i586/xine-gnomevfs-1.1.4-6.7mdv2007.1.i586.rpm 9b5d2a1c1d29ffbcda4820e317151985 2007.1/i586/xine-image-1.1.4-6.7mdv2007.1.i586.rpm f9085c7a5abbbdeda51b53b00bfdeb96 2007.1/i586/xine-jack-1.1.4-6.7mdv2007.1.i586.rpm 5e3c733e097c4d5405509a9b7bf09a9c 2007.1/i586/xine-plugins-1.1.4-6.7mdv2007.1.i586.rpm 6ae1f58bdc1e02a13dd53ad7098a39a2 2007.1/i586/xine-pulse-1.1.4-6.7mdv2007.1.i586.rpm f8d91cc3e12d683f508cc4a972375227 2007.1/i586/xine-sdl-1.1.4-6.7mdv2007.1.i586.rpm 8cfb3b489466b2d75513a88982939605 2007.1/i586/xine-smb-1.1.4-6.7mdv2007.1.i586.rpm 5dbeba8e5dc8dfc8f33c119a22c9216a 2007.1/SRPMS/xine-lib-1.1.4-6.7mdv2007.1.src.rpm -- Mandriva Linux 2007.1/X86_64 -- 5d087d041ce6f601bd126ad7cbeaf885 2007.1/x86_64/lib64xine1-1.1.4-6.7mdv2007.1.x86_64.rpm b3039816dd8675c3b7a53fbd02d7985a 2007.1/x86_64/lib64xine1-devel-1.1.4-6.7mdv2007.1.x86_64.rpm abeba0838384ef6db0fdcf9daa73b72a 2007.1/x86_64/xine-aa-1.1.4-6.7mdv2007.1.x86_64.rpm 49ac0466be942b411c8f09fa7b3252f4 2007.1/x86_64/xine-arts-1.1.4-6.7mdv2007.1.x86_64.rpm 94b5fece762703f3ce7e9c8a698d0d38 2007.1/x86_64/xine-caca-1.1.4-6.7mdv2007.1.x86_64.rpm 28983abc5e237d5299ce5339c4c55de3 2007.1/x86_64/xine-dxr3-1.1.4-6.7mdv2007.1.x86_64.rpm efabb6cc2b4354b9642ee9509ac85529 2007.1/x86_64/xine-esd-1.1.4-6.7mdv2007.1.x86_64.rpm a1ba6ef73175029d9bff30c18c8da03c 2007.1/x86_64/xine-flac-1.1.4-6.7mdv2007.1.x86_64.rpm c0339fe8b0b7088c00f57c5825dede60 2007.1/x86_64/xine-gnomevfs-1.1.4-6.7mdv2007.1.x86_64.rpm 1f75876e108d4a3fd395dc6200c29247 2007.1/x86_64/xine-image-1.1.4-6.7mdv2007.1.x86_64.rpm 2726efd011a6bc8e4a93f58c932d94ff 2007.1/x86_64/xine-jack-1.1.4-6.7mdv2007.1.x86_64.rpm d77a456b2693aaa123af5d3623b1ce0c 2007.1/x86_64/xine-plugins-1.1.4-6.7mdv2007.1.x86_64.rpm 63558627e698b8b4fd959ebb804bdf7d 2007.1/x86_64/xine-pulse-1.1.4-6.7mdv2007.1.x86_64.rpm de93098e4bacad485dc7640172ee6e84 2007.1/x86_64/xine-sdl-1.1.4-6.7mdv2007.1.x86_64.rpm 048058ec44c6359e9fc453c2d1cc9a4d 2007.1/x86_64/xine-smb-1.1.4-6.7mdv2007.1.x86_64.rpm 5dbeba8e5dc8dfc8f33c119a22c9216a 2007.1/SRPMS/xine-lib-1.1.4-6.7mdv2007.1.src.rpm Changelog: 2008-02-20: Removed Mandriva Linux 2007.0 from the list of affected products. 2008-02-22: Updated "Solution" section with new packages due to a regression. Original Advisory: http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:046 http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:046-1 Other References: SA28801: http://secunia.com/advisories/28801/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Red Hat update for vsftpd

2.	Red Hat update for rdesktop

3.	Red Hat update for rdesktop

4.	Red Hat update for coreutils

5.	Red Hat update for nss_ldap

6.	Red Hat update for kernel

7.	Red Hat update for mysql

8.	OpenBSD BIND Query Port DNS Cache Poisoning

9.	Atom PhotoBlog "photoId" SQL Injection Vulnerability

10.	Debian update for clamav