DEBIAN-CVE-2008-0073

Advisory lineage Upstream: 1 Downstream: 4

Upstream

CVE-2008-0073

Downstream

DSA-1536-1 DSA-1543-1 DTSA-119-1 DTSA-128-1

Published: 24 Mar 2008, 22:44

Last modified:28 Apr 2026, 20:09

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

24 Mar 2008, 22:44

Published

Vulnerability first disclosed

28 Apr 2026, 20:09

Last Modified

Vulnerability information updated

Description

Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.

Affected Systems

debian•vlc
< 0.8.6.e-2 | < 0.8.6.e-2 | < 0.8.6.e-2 | < 0.8.6.e-2

References (1)

https://security-tracker.debian.org/tracker/CVE-2008-0073