[vuxml] multimedia/vlc-devel: document CVE-2008-4654 and CVE-2008-4686

Eygene Ryabinkin rea-fbsd at codelabs.ru
Sat Nov 29 13:12:44 PST 2008

>Submitter-Id:	current-users
>Originator:	Eygene Ryabinkin
>Organization:	Code Labs
>Confidential:	no 
>Synopsis:	[vuxml] multimedia/vlc-devel: document CVE-2008-4654 and CVE-2008-4686
>Severity:	non-critical
>Priority:	medium
>Category:	ports
>Class:		sw-bug
>Release:	FreeBSD 7.1-PRERELEASE amd64

System: FreeBSD 7.1-PRERELEASE amd64


Multiple overflows were discovered in the TiVo demuxer within the
VLC player.


Look at http://www.openwall.com/lists/oss-security/2008/10/22/2


The following VuXML entry should be evaluated and added:
--- vuln.xml begins here ---
  <vuln vid="">
    <topic>vlc-devel -- multiple overflows in the TiVo demux plugin</topic>
      <body xmlns="http://www.w3.org/1999/xhtml">
	<p>Tobias Klein from TrapKit notifies:</p>
	<blockquote cite="http://www.trapkit.de/advisories/TKADV2008-010.txt">
	  <p>The VLC media player contains a stack overflow
	  vulnerability while parsing malformed TiVo ty media files.
	  The vulnerability can be trivially exploited by a (remote)
	  attacker to execute arbitrary code in the context of VLC
	  media player.</p>
	<p>Entry for CVE-2008-4686 says:</p>
	<blockquote cite="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4686">
	  <p>Multiple integer overflows in ty.c in the TY demux
	  plugin (aka the TiVo demuxer) in VideoLAN VLC media player,
	  probably 0.9.4, allow remote attackers to have an unknown
	  impact via a crafted .ty file, a different vulnerability
	  than CVE-2008-4654.</p>
--- vuln.xml ends here ---

I had traced the vulnerable code down to the older
snapshots have no such code as referenced in the commits

More information about the freebsd-vuxml mailing list