[Secure-testing-commits] r10758 - in data: . CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sun Dec 21 12:53:04 UTC 2008
Author: nion
Date: 2008-12-21 12:53:03 +0000 (Sun, 21 Dec 2008)
New Revision: 10758
Modified:
data/CVE/list
data/embedded-code-copies
Log:
mplayer builds against system-wide faad copy which fixes CVE-2008-5244
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-12-21 12:33:03 UTC (rev 10757)
+++ data/CVE/list 2008-12-21 12:53:03 UTC (rev 10758)
@@ -1037,7 +1037,7 @@
CVE-2008-5244 (Unspecified vulnerability in xine-lib before 1.1.15 has unknown impact ...)
- xine-lib 1.1.14-3
- faad2 2.6.1-1
- - mplayer <unfixed> (bug #407010)
+ - mplayer 1.0~rc2-20 (bug #407010)
NOTE: overlaps with CVE-2008-4610, same aac issue
CVE-2008-5243 (The real_parse_headers function in demux_real.c in xine-lib 1.1.12, ...)
- xine-lib <unfixed> (unimportant; bug #508716)
Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies 2008-12-21 12:33:03 UTC (rev 10757)
+++ data/embedded-code-copies 2008-12-21 12:53:03 UTC (rev 10758)
@@ -212,6 +212,9 @@
- xmovie <unfixed>
TODO: gimp-gap (potentially using ffmpeg code as well)
+faad2
+ - mplayer 1.0~rc2-20 (embed)
+
mad MPEG decoding lib
- mad <unfixed> (embed)
- xine-lib <unfixed> (embed)
More information about the Secure-testing-commits
mailing list