CVE-2008-5244

Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact and attack vectors related to libfaad.  NOTE: due to the lack of details, it is not clear whether this is an issue in xine-lib or in libfaad.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 62%
VendorProductVersion
xinexine-lib
𝑥
≤ 1.1.15
xinexine-lib
0.9.13
xinexine-lib
1.0
xinexine-lib
1.0.1
xinexine-lib
1.0.2
xinexine-lib
1.0.3a:a
xinexine-lib
1.1.0
xinexine-lib
1.1.1
xinexine-lib
1.1.2
xinexine-lib
1.1.3
xinexine-lib
1.1.4
xinexine-lib
1.1.5
xinexine-lib
1.1.6
xinexine-lib
1.1.7
xinexine-lib
1.1.8
xinexine-lib
1.1.9
xinexine-lib
1.1.9.1
xinexine-lib
1.1.10
xinexine-lib
1.1.10.1
xinexine-lib
1.1.11
xinexine-lib
1.1.11.1
xinexine-lib
1.1.12
xinexine-lib
1.1.13
xinexine-lib
1.1.14
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
faad2
bullseye
2.10.0-1
fixed
bookworm
2.10.1-1
fixed
sid
2.11.1-1
fixed
trixie
2.11.1-1
fixed
mplayer
bullseye
2:1.4+ds1-1+deb11u1
fixed
bookworm
2:1.5+svn38408-1
fixed
sid
2:1.5+svn38542-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
faad2
karmic
not-affected
jaunty
not-affected
intrepid
not-affected
hardy
not-affected
gutsy
ignored
dapper
ignored
xine-lib
karmic
not-affected
jaunty
not-affected
intrepid
not-affected
hardy
Fixed 1.1.11.1-1ubuntu3.2
released
gutsy
Fixed 1.1.7-1ubuntu1.4
released
dapper
Fixed 1.1.1+ubuntu2-7.10
released
References
http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
http://securitytracker.com/id?1020703
http://sourceforge.net/project/shownotes.php?release_id=619869
http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
http://securitytracker.com/id?1020703
http://sourceforge.net/project/shownotes.php?release_id=619869