From 38c7aa2581a80ca5fda454af74e0bd12f4f159b6 Mon Sep 17 00:00:00 2001
From: Darren Salt <linux@youmustbejoking.demon.co.uk>
Date: Tue, 25 Mar 2008 14:45:05 +0000
Subject: Improve security bug fix description & add its CVE no.

---
 ChangeLog | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/ChangeLog b/ChangeLog
index af30be981..4f2c4d857 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,6 +1,8 @@
 xine-lib (1.1.11.1) 2008-??-??
   * Security fixes:
-    - Heap overflows in FLV, Qt, Real, WC3Movie, Matroska and FILM demuxers.
+    - Integer overflows in FLV, Qt, Real, WC3Movie, Matroska and FILM
+      demuxers, allowing remote attackers to trigger heap overflows and
+      possibly execute arbitrary code. (CVE-2008-1482)
   * Added a few more memory allocation checks to the above demuxers.
   * WAV file playback fix: don't assume that the first chunk is "fmt ".
 
-- 
cgit v1.2.3