CVE-2004-1188

Publication date 10 January 2005

Last updated 17 July 2025

Ubuntu priority

The pnm_get_chunk function in xine 0.99.2 and earlier, and other packages such as MPlayer that use the same code, does not properly verify that the chunk size is less than the PREAMBLE_SIZE, which causes a read operation with a negative length that leads to a buffer overflow via (1) RMF_TAG, (2) DATA_TAG, (3) PROP_TAG, (4) MDPR_TAG, and (5) CONT_TAG values, a different vulnerability than CVE-2004-1187.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
xine-extracodecs	7.04 feisty	Fixed 1.1.1+ubuntu1-2
	6.10 edgy	Fixed 1.1.1+ubuntu1-2
	6.06 LTS dapper	Fixed 1.1.1+ubuntu1-2
xine-lib	7.04 feisty	Fixed 1.1.4-2ubuntu3
	6.10 edgy	Fixed 1.1.2+repacked1-0ubuntu3.4
	6.06 LTS dapper	Fixed 1.1.1+ubuntu2-7.7

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2004-1188