Opened 20 years ago
Closed 19 years ago
#1642 closed defect (fixed)
xine-lib security vulnerability
| Reported by: | Owned by: | ||
|---|---|---|---|
| Priority: | highest | Milestone: | 6.2.0 |
| Component: | BOOK | Version: | SVN |
| Severity: | normal | Keywords: | |
| Cc: |
Description ¶
From: Tim van der Molen <tbm@…>
The problem is solved in version 1.0.3a. A patch against CVS is also available. A workaround is to delete the xineplug_inp_cdda.so file.
More information: <http://xinehq.de/index.php/security/XSA-2005-1>.
Change History (6)
comment:1 by , 19 years ago
| bug_file_loc: | → http://www.xinehq.de/ |
|---|---|
| Milestone: | future → 6.2 |
| rep_platform: | PC → All |
comment:2 by , 19 years ago
Unfortunately 1.0.3a won't compile with gcc4, unless someone wants to search for a patch...
comment:3 by , 19 years ago
Xine-libs 1.1.1 was recently released. It does contain this security fix, and will also compile with gcc4.
comment:4 by , 19 years ago
| Owner: | changed from to |
|---|
comment:5 by , 19 years ago
| Status: | new → assigned |
|---|
comment:6 by , 19 years ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
Note:
See TracTickets
for help on using tickets.
The BLFS book was erroneously updated to version 1.1.0 of Xine-Libs. The book should probably be downgraded to the 1.0.3a version.