Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The real_parse_audio_specific_data function in demux_real.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, uses an untrusted height (aka codec_data_length) value as a divisor, which allow remote attackers to cause a denial of service (divide-by-zero error and crash) via a zero value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
xine-lib demux_real.c中real_parse_audio_specific_data方法拒绝服务攻击
Vulnerability Description
xine是一款免费的媒体播放器,支持多种格式。 xine-lib库在解析畸形媒体文件时存在多个缓冲区溢出漏洞,远程攻击者可以执行任意代码。 demux_real.c中real_parse_audio_specific_data方法存在决绝服务漏洞.攻击者利用不信任的高度值做为除数.可以引起拒绝服务攻击漏洞(0值错误和崩溃)利用0值.
CVSS Information
N/A
Vulnerability Type
N/A