Stack-based buffer overflow in the demux_nsf_send_chunk function in src/demuxers/demux_nsf.c in xine-lib 1.1.12 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long NSF title.
Software | From | Fixed in |
---|---|---|
xine / xine-lib | - | 1.1.12.x |
xine / xine-lib | 1.1.0 | 1.1.0.x |
xine / xine-lib | 1.1.1 | 1.1.1.x |
xine / xine-lib | 1.1.10 | 1.1.10.x |
xine / xine-lib | 1.1.10.1 | 1.1.10.1.x |
xine / xine-lib | 1.1.11 | 1.1.11.x |
xine / xine-lib | 1.1.11.1 | 1.1.11.1.x |
xine / xine-lib | 1.1.9 | 1.1.9.x |