Mention more security fixes.

CVS patchset: 8021 CVS date: 2006/06/08 21:00:01
author: Darren Salt <linux@youmustbejoking.demon.co.uk> 2006-06-08 21:00:01 +0000
committer: Darren Salt <linux@youmustbejoking.demon.co.uk> 2006-06-08 21:00:01 +0000
commit: 16fe59426bc145e8eff510779b282830e8afd71d (patch)
tree: b95e92e629d66b18225b980a2af1b63169c68fe2
parent: ea691320f78cafbba2d744f2b89dc547c1d7c918 (diff)
download: xine-lib-16fe59426bc145e8eff510779b282830e8afd71d.tar.gz
xine-lib-16fe59426bc145e8eff510779b282830e8afd71d.tar.bz2
1 files changed, 4 insertions, 2 deletions
diff --git a/ChangeLog b/ChangeLog
index aeda266e4..791151058 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,6 +1,8 @@
 xine-lib (1.1.2)
-  * SECURITY:
-    - Fix possible overflow in the HTTP plugin. (CVE-2006-2802)
+  * Security fixes:
+    - CVE-2005-4048: possible buffer overflow in libavcodec (crafted PNGs).
+    - CVE-2006-2802: possible buffer overflow in the HTTP plugin. 
+    - possible buffer overflow via bad indexes in specially-crafted AVI files
   * Czech translation update
   * Disable the XXMC plugin if Xv support isn't there
   * Also look for Xv support in /usr/lib for X.org's new location
author	Darren Salt <linux@youmustbejoking.demon.co.uk>	2006-06-08 21:00:01 +0000
committer	Darren Salt <linux@youmustbejoking.demon.co.uk>	2006-06-08 21:00:01 +0000
commit	16fe59426bc145e8eff510779b282830e8afd71d (patch)
tree	b95e92e629d66b18225b980a2af1b63169c68fe2
parent	ea691320f78cafbba2d744f2b89dc547c1d7c918 (diff)
download	xine-lib-16fe59426bc145e8eff510779b282830e8afd71d.tar.gz xine-lib-16fe59426bc145e8eff510779b282830e8afd71d.tar.bz2