From 16fe59426bc145e8eff510779b282830e8afd71d Mon Sep 17 00:00:00 2001
From: Darren Salt <linux@youmustbejoking.demon.co.uk>
Date: Thu, 8 Jun 2006 21:00:01 +0000
Subject: Mention more security fixes.

CVS patchset: 8021
CVS date: 2006/06/08 21:00:01
---
 ChangeLog | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/ChangeLog b/ChangeLog
index aeda266e4..791151058 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,6 +1,8 @@
 xine-lib (1.1.2)
-  * SECURITY:
-    - Fix possible overflow in the HTTP plugin. (CVE-2006-2802)
+  * Security fixes:
+    - CVE-2005-4048: possible buffer overflow in libavcodec (crafted PNGs).
+    - CVE-2006-2802: possible buffer overflow in the HTTP plugin. 
+    - possible buffer overflow via bad indexes in specially-crafted AVI files
   * Czech translation update
   * Disable the XXMC plugin if Xv support isn't there
   * Also look for Xv support in /usr/lib for X.org's new location
-- 
cgit v1.2.3