Search for packages
| purl | pkg:ebuild/media-video/xine-ui@0.9.23-r1 |
| Next non-vulnerable version | 0.9.23-r2 |
| Latest non-vulnerable version | 0.99.5_pre20060716 |
| Risk | 9.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-gjwn-nj5b-aaaf
Aliases: CVE-2004-1951 |
xine 1.x alpha, 1.x beta, and 1.0rc through 1.0rc3a, and xine-ui 0.9.21 to 0.9.23 allows remote attackers to overwrite arbitrary files via the (1) audio.sun_audio_device or (2) dxr3.devicename options in an MRL link. |
Affected by 0 other vulnerabilities. |
|
VCID-npbk-aqyu-aaaj
Aliases: CVE-2004-0372 |
xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check scripts. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T12:38:53.154063+00:00 | Gentoo Importer | Affected by | VCID-gjwn-nj5b-aaaf | https://security.gentoo.org/glsa/200404-20 | 36.0.0 |
| 2025-03-28T12:38:53.100600+00:00 | Gentoo Importer | Affected by | VCID-npbk-aqyu-aaaj | https://security.gentoo.org/glsa/200404-20 | 36.0.0 |
| 2024-09-18T07:32:39.803963+00:00 | Gentoo Importer | Affected by | VCID-gjwn-nj5b-aaaf | https://security.gentoo.org/glsa/200404-20 | 34.0.1 |
| 2024-09-18T07:32:39.745030+00:00 | Gentoo Importer | Affected by | VCID-npbk-aqyu-aaaj | https://security.gentoo.org/glsa/200404-20 | 34.0.1 |
| 2024-01-04T01:39:05.161694+00:00 | Gentoo Importer | Affected by | VCID-gjwn-nj5b-aaaf | https://security.gentoo.org/glsa/200404-20 | 34.0.0rc1 |
| 2024-01-04T01:39:05.103117+00:00 | Gentoo Importer | Affected by | VCID-npbk-aqyu-aaaj | https://security.gentoo.org/glsa/200404-20 | 34.0.0rc1 |