Add length checking in the FLAC metadata-parsing code.

Make the tracknumber/tracktotal buffer larger (possible overflow).
author: Darren Salt <linux@youmustbejoking.demon.co.uk> 2008-02-07 17:51:59 +0000
committer: Darren Salt <linux@youmustbejoking.demon.co.uk> 2008-02-07 17:51:59 +0000
commit: 5c051b721ee7ff79ae655660e9695563a902945c (patch)
tree: f561e224b3b20f5b8ccc86fa1d96c3f3dcdab8fe /ChangeLog
parent: 89c18074b7f0afb74b5abbfc4a444f41c52f2344 (diff)
download: xine-lib-5c051b721ee7ff79ae655660e9695563a902945c.tar.gz
xine-lib-5c051b721ee7ff79ae655660e9695563a902945c.tar.bz2
1 files changed, 4 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index f05ce93eb..4a66c4c45 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,4 +1,8 @@
 xine-lib (1.1.11) unreleased
+  * Security fixes:
+    - Array index vulnerability which may allow remote attackers to execute
+      arbitrary code via a crafted FLAC tag, causing a stack buffer overflow.
+      (CVE-2008-0486)
   * Fix a RealPlayer codec detection bug.
 
 xine-lib (1.1.10) 2008-01-26
author	Darren Salt <linux@youmustbejoking.demon.co.uk>	2008-02-07 17:51:59 +0000
committer	Darren Salt <linux@youmustbejoking.demon.co.uk>	2008-02-07 17:51:59 +0000
commit	5c051b721ee7ff79ae655660e9695563a902945c (patch)
tree	f561e224b3b20f5b8ccc86fa1d96c3f3dcdab8fe /ChangeLog
parent	89c18074b7f0afb74b5abbfc4a444f41c52f2344 (diff)
download	xine-lib-5c051b721ee7ff79ae655660e9695563a902945c.tar.gz xine-lib-5c051b721ee7ff79ae655660e9695563a902945c.tar.bz2