1 files changed, 4 insertions, 0 deletions

diff --git a/ChangeLog b/ChangeLog
index f05ce93eb..4a66c4c45 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,4 +1,8 @@
 xine-lib (1.1.11) unreleased
+  * Security fixes:
+    - Array index vulnerability which may allow remote attackers to execute
+      arbitrary code via a crafted FLAC tag, causing a stack buffer overflow.
+      (CVE-2008-0486)
   * Fix a RealPlayer codec detection bug.
 
 xine-lib (1.1.10) 2008-01-26