[Bluewhite64 Linux Security] xine-lib [BW64SA:20090409-03]
Hash: SHA1
[Bluewhite64 Linux Security] xine-lib [BW64SA:20090409-03]
New xine-lib packages are available for Bluewhite64 Linux 12.0, 12.1 and 12.2
to fix security issues.
More details about this issue may be found in the Common
Vulnerabilities and Exposures (CVE) database:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0385
Details from the Bluewhite64 Linux 12.2 ChangeLog:
- ---------------------------------------------------
PATCHES/packages/xine-lib-1.1.16.3-x86_64-1.tgz:
Upgraded to xine-lib-1.1.16.3.
- Fix another possible int overflow in the 4XM demuxer.
(ref. TKADV2009-004, CVE-2009-0385)
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0385
[*** Security fix ***]
- ---------------------------------------------------
Download the new packages from:
- --------------------------------
For Bluewhite64 Linux 12.0:
http://data.bluewhite64.com/bluewhite64-12.0/patches/packages/xine-lib-1.1.16.3-x86_64-1.tgz
For Bluewhite64 Linux 12.1:
http://data.bluewhite64.com/bluewhite64-12.1/patches/packages/xine-lib-1.1.16.3-x86_64-1.tgz
For Bluewhite64 Linux 12.2:
http://data.bluewhite64.com/bluewhite64-12.2/patches/packages/xine-lib-1.1.16.3-x86_64-1.tgz
Also, please see the "Get Bluewhite64" section on http://www.bluewhite64.com for
additional mirror sites near you.
MD5 signatures:
- ----------------
Bluewhite64 Linux 12.0 packages:
059e4fc23a40dbc8e69f30da47a3f01d xine-lib-1.1.16.3-x86_64-1.tgz
Bluewhite64 Linux 12.1 packages:
eaf6c116a57a56fe7073407a7827e62c xine-lib-1.1.16.3-x86_64-1.tgz
Bluewhite64 Linux 12.2 packages:
3c0566e1164ed66393f4217a1d51e128 xine-lib-1.1.16.3-x86_64-1.tgz
Installation instructions:
- ----------------------------
Upgrade the package as root:
# upgradepkg xine-lib-1.1.16.3-x86_64-1.tgz
- ---
Bluewhite64 Linux Security Team
http://bluewhite64.com/gpg-key
security©bluewhite64.com
- ------------------------------------------------------
To leave the bluewhite64-security mailing list send a
blank email to:
bluewhite64-security-unsubscribe©bluewhite64.com
You will get a confirmation message back containing
instructions to complete the process.
Please do not reply to this email address.
- ------------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkneA7wACgkQpTOsxuDdlY7XGACdF7acGpmHPBSStkPD/qqC3nba
bmIAniApVBx3S+z9HB/i3uTf1pSWFOxa
=jzDD
-----END PGP SIGNATURE-----