[Bug 305958] [NEW] CVE-2008-5276 RealMedia Processing Integer Overflow Vulnerability
Sebastian Kemper
sebastian_ml at gmx.net
Sun Dec 7 12:28:44 UTC 2008
*** This bug is a security vulnerability ***
Public security bug reported:
http://www.trapkit.de/advisories/TKADV2008-013.txt
Affected Software: VLC media player < 0.9.8a
Remotely Exploitable: Yes
Locally Exploitable: No
Vendor Status: Vendor has released an updated version
For Ibex there seems to be an updated .deb
(https://bugs.launchpad.net/getdeb.net/+bug/304123) although I don't
know what getdeb is. Anyway, older releases like Hardy are still
vulnerable.
lsb_release -rd
Description: Ubuntu 8.04.1
Release: 8.04
** Affects: vlc (Ubuntu)
Importance: Undecided
Status: New
** Visibility changed to: Public
--
CVE-2008-5276 RealMedia Processing Integer Overflow Vulnerability
https://bugs.launchpad.net/bugs/305958
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list