openSUSE Security Update : xine-devel (xine-devel-483)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update of xine fixes multiple buffer overflows while parsing
files :

- CVE-2008-3231

- CVE-2008-5233

- CVE-2008-5234

- CVE-2008-5235

- CVE-2008-5236

- CVE-2008-5237

- CVE-2008-5238

- CVE-2008-5239

- CVE-2008-5240

- CVE-2008-5241

- CVE-2008-5242

- CVE-2008-5243

- CVE-2008-5244

- CVE-2008-5245

- CVE-2008-5246

- CVE-2008-5247

- CVE-2008-5248 These bugs can lead to remote code
execution.

See also :

https://bugzilla.novell.com/show_bug.cgi?id=417929
https://bugzilla.novell.com/show_bug.cgi?id=419541

Solution :

Update the affected xine-devel packages.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now