diff options
| author | Darren Salt <linux@youmustbejoking.demon.co.uk> | 2009-03-08 16:54:39 +0000 |
|---|---|---|
| committer | Darren Salt <linux@youmustbejoking.demon.co.uk> | 2009-03-08 16:54:39 +0000 |
| commit | 7e63be8ffb88c1fe981c7cf39c535a5553e35b31 (patch) | |
| tree | 6f5892c85acfa4b853956a05b5ee0fd47eae94e2 /ChangeLog | |
| parent | e7377d3869eb77ea29c4b6ed5722b4a4b59cf5d7 (diff) | |
| download | xine-lib-7e63be8ffb88c1fe981c7cf39c535a5553e35b31.tar.gz xine-lib-7e63be8ffb88c1fe981c7cf39c535a5553e35b31.tar.bz2 | |
Fix another possible 4xm demuxer integer overflow.
--HG--
extra : transplant_source : U%AF%FD%B5%60%27Y%7F%B5Q%F796%F7a%98%F0k%B8%EF
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 6 |
1 files changed, 5 insertions, 1 deletions
@@ -1,4 +1,7 @@ xine-lib (1.1.17) 2009-??-?? + * Security fixes: + - Fix another possible int overflow in the 4XM demuxer. + (ref. TKADV2009-004, CVE-2009-0385) * Enable libmpeg2new (if configured with --enable-libmpeg2new). This is not yet production code; the old mpeg2 decoder remains the default. * Add support for OpenBSD. @@ -18,7 +21,8 @@ xine-lib (1.1.16.2) 2009-02-10 * Fix broken size checks in various input plugins (ref. CVE-2008-5239). * More malloc checking (ref. CVE-2008-5240). * Fix race conditions in gapless_switch (ref. kde bug #180339) - * Fix a possible integer overflow in the 4XM demuxer. (TKADV2009-004.txt) + * Fix a possible integer overflow in the 4XM demuxer. + (TKADV2009-004, CVE-2009-0385) xine-lib (1.1.16.1) 2009-01-11 * Fix build with older ffmpeg, both internal and in Debian 5.0. |