Denial of Service Vulnerability in GNOME Rhythmbox Media Player
CVE-2008-7185

Currently unrated

Key Information:

Vendor: Gnome
Status: Rhythmbox
Vendor: CVE Published:; 8 September 2009

What is CVE-2008-7185?

GNOME Rhythmbox 0.11.5 is impacted by a vulnerability that allows remote attackers to crash the media player. This occurs through the processing of a specially crafted playlist (.pls) file containing an excessively long Title field, leading to a segmentation fault. The flaw is potentially linked to the g_hash_table_lookup function located in b-playlist-manager.c, highlighting the need for users to exercise caution when handling unknown playlist files.

References

http://www.securityfocus.com/bid/29958

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/493683/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/archive/1/493809/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 8, 2009
Vulnerability Reserved
Sep 8, 2009

Gnome

What is CVE-2008-7185?

References

Timeline