Launchpad CVE tracker

CVE 2006-1664

Buffer overflow in xine_list_delete_current in libxine 1.14 and earlier, as distributed in xine-lib 1.1.1 and earlier, allows remote attackers to execute arbitrary code via a crafted MPEG stream.

Related bugs and status

CVE-2006-1664 (Candidate) is related to these bugs:

Bug #41447: CVE-2006-1664: Malformed MPEG Stream Buffer Overflow Vulnerability

Summary				In	Importance	Status
	41447	CVE-2006-1664: Malformed MPEG Stream Buffer Overflow Vulnerability		xine-lib (Ubuntu)	High	Invalid
	41447	CVE-2006-1664: Malformed MPEG Stream Buffer Overflow Vulnerability		xine-lib (Debian)	Unknown	Fix Released

Bug #181949: Please sync xine-lib (main) from Debian unstable (main)

Summary				In	Importance	Status
	181949	Please sync xine-lib (main) from Debian unstable (main)		xine-lib (Ubuntu)	Undecided	Fix Released

Bug #922668: Sync xine-lib-1.2 1.2.0-5 (universe) from Debian unstable (main)

Summary				In	Importance	Status
	922668	Sync xine-lib-1.2 1.2.0-5 (universe) from Debian unstable (main)		xine-lib-1.2 (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2006-1664

References