xine allows local users to overwrite arbitrary files via a symlink attack on a bug report email that is generated by the (1) xine-bugreport or (2) xine-check scripts.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Xine | Xine | 0.9.13 (including) | 0.9.13 (including) |
| Xine | Xine | 1_beta1 (including) | 1_beta1 (including) |
| Xine | Xine | 1_beta2 (including) | 1_beta2 (including) |
| Xine | Xine | 1_beta3 (including) | 1_beta3 (including) |
| Xine | Xine | 1_beta4 (including) | 1_beta4 (including) |
| Xine | Xine | 1_beta5 (including) | 1_beta5 (including) |
| Xine | Xine | 1_beta6 (including) | 1_beta6 (including) |
| Xine | Xine | 1_beta7 (including) | 1_beta7 (including) |
| Xine | Xine | 1_beta8 (including) | 1_beta8 (including) |
| Xine | Xine | 1_beta9 (including) | 1_beta9 (including) |
| Xine | Xine | 1_beta10 (including) | 1_beta10 (including) |
| Xine | Xine | 1_beta11 (including) | 1_beta11 (including) |
| Xine | Xine | 1_beta12 (including) | 1_beta12 (including) |
| Xine | Xine | 1_rc0a (including) | 1_rc0a (including) |
| Xine | Xine | 1_rc1 (including) | 1_rc1 (including) |
| Xine | Xine | 1_rc2 (including) | 1_rc2 (including) |
| Xine | Xine | 1_rc3 (including) | 1_rc3 (including) |
| Xine | Xine | 1_rc3a (including) | 1_rc3a (including) |
| Xine | Xine | 1_rc3b (including) | 1_rc3b (including) |