diff options
| author | Darren Salt <linux@youmustbejoking.demon.co.uk> | 2008-03-26 21:16:07 +0000 |
|---|---|---|
| committer | Darren Salt <linux@youmustbejoking.demon.co.uk> | 2008-03-26 21:16:07 +0000 |
| commit | 427bd5660454820ab4de3c569b1f4727977c23ef (patch) | |
| tree | a3047e3eec2c78f52c5de18dcd1e36eefbc277d5 /ChangeLog | |
| parent | fd417a2e958b0f38be68a09c1316324f1e9589c4 (diff) | |
| parent | 1bedd052b17aab0fc6b1b85a727207648908095b (diff) | |
| download | xine-lib-427bd5660454820ab4de3c569b1f4727977c23ef.tar.gz xine-lib-427bd5660454820ab4de3c569b1f4727977c23ef.tar.bz2 | |
Merge from 1.1.
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 10 |
1 files changed, 10 insertions, 0 deletions
@@ -64,6 +64,14 @@ xine-lib (1.1.90) (Unreleased) * Report more video output capabilities via (port)->get_capabilities(): colour controls, zooming, colour keying. +xine-lib (1.1.11.1) 2008-??-?? + * Security fixes: + - Integer overflows in FLV, Qt, Real, WC3Movie, Matroska and FILM + demuxers, allowing remote attackers to trigger heap overflows and + possibly execute arbitrary code. (CVE-2008-1482) + * Added a few more memory allocation checks to the above demuxers. + * WAV file playback fix: don't assume that the first chunk is "fmt ". + xine-lib (1.1.11) 2008-03-19 * Security fixes: - Array Indexing Vulnerability in sdpplin_parse(). (CVE-2008-0073) @@ -86,6 +94,8 @@ xine-lib (1.1.11) 2008-03-19 it for functions like subtitle file detection must instead use file:// MRLs; if they don't, we consider them to be buggy.) * Fixed long delay when closing stream on dual core systems [Bug #33] + * DVD playback improvement: don't trust the file sizes. + * Build fixes for use with recent ffmpeg. xine-lib (1.1.10.1) 2008-02-07 * Security fixes: |