Add a few CVE IDs which got left out.

author: Darren Salt <linux@youmustbejoking.demon.co.uk> 2009-01-07 18:28:36 +0000
committer: Darren Salt <linux@youmustbejoking.demon.co.uk> 2009-01-07 18:28:36 +0000
commit: 2bbe8f0ab3a6282dbb3387a41890f2269f77051f (patch)
tree: b1e9baf9b249fdf9b077f082734ad4b33ff0903a
parent: 3f9f65fc0d816a77bff17c8ad001d174a7e68fc3 (diff)
download: xine-lib-2bbe8f0ab3a6282dbb3387a41890f2269f77051f.tar.gz
xine-lib-2bbe8f0ab3a6282dbb3387a41890f2269f77051f.tar.bz2
1 files changed, 2 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog
index 1a92b7cbc..c1424698a 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -6,7 +6,8 @@ xine-lib (1.1.16) 2009-01-07
     - Multiple buffer overflows.                               (CVE-2008-5236)
     - Multiple integer overflows.                              (CVE-2008-5237)
     - Unchecked or incompletely-checked read function results. (CVE-2008-5239)
-    - Unchecked malloc using untrusted values.                 (CVE-2008-5240)
+    - Unchecked malloc using untrusted values.  (CVE-2008-5240, CVE-2008-5242)
+    - Integer underflow in qt compressed atom handling.        (CVE-2008-5241)
     - Buffer indexing using untrusted or unchecked values.     (CVE-2008-5243)
     - Integer overflows in the ffmpeg audio decoder and the CDDA server.
     - Heap buffer overflow in the ffmpeg video decoder.
author	Darren Salt <linux@youmustbejoking.demon.co.uk>	2009-01-07 18:28:36 +0000
committer	Darren Salt <linux@youmustbejoking.demon.co.uk>	2009-01-07 18:28:36 +0000
commit	2bbe8f0ab3a6282dbb3387a41890f2269f77051f (patch)
tree	b1e9baf9b249fdf9b077f082734ad4b33ff0903a
parent	3f9f65fc0d816a77bff17c8ad001d174a7e68fc3 (diff)
download	xine-lib-2bbe8f0ab3a6282dbb3387a41890f2269f77051f.tar.gz xine-lib-2bbe8f0ab3a6282dbb3387a41890f2269f77051f.tar.bz2