diff options
| -rw-r--r-- | ChangeLog | 4 |
1 files changed, 3 insertions, 1 deletions
@@ -1,6 +1,8 @@ xine-lib (1.1.11.1) 2008-??-?? * Security fixes: - - Heap overflows in FLV, Qt, Real, WC3Movie, Matroska and FILM demuxers. + - Integer overflows in FLV, Qt, Real, WC3Movie, Matroska and FILM + demuxers, allowing remote attackers to trigger heap overflows and + possibly execute arbitrary code. (CVE-2008-1482) * Added a few more memory allocation checks to the above demuxers. * WAV file playback fix: don't assume that the first chunk is "fmt ". |