From 2bbe8f0ab3a6282dbb3387a41890f2269f77051f Mon Sep 17 00:00:00 2001 From: Darren Salt Date: Wed, 7 Jan 2009 18:28:36 +0000 Subject: Add a few CVE IDs which got left out. --- ChangeLog | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'ChangeLog') diff --git a/ChangeLog b/ChangeLog index 1a92b7cbc..c1424698a 100644 --- a/ChangeLog +++ b/ChangeLog @@ -6,7 +6,8 @@ xine-lib (1.1.16) 2009-01-07 - Multiple buffer overflows. (CVE-2008-5236) - Multiple integer overflows. (CVE-2008-5237) - Unchecked or incompletely-checked read function results. (CVE-2008-5239) - - Unchecked malloc using untrusted values. (CVE-2008-5240) + - Unchecked malloc using untrusted values. (CVE-2008-5240, CVE-2008-5242) + - Integer underflow in qt compressed atom handling. (CVE-2008-5241) - Buffer indexing using untrusted or unchecked values. (CVE-2008-5243) - Integer overflows in the ffmpeg audio decoder and the CDDA server. - Heap buffer overflow in the ffmpeg video decoder. -- cgit v1.2.3 From 37a24a7db9901730f6709e802df0fef42884ddf9 Mon Sep 17 00:00:00 2001 From: Darren Salt Date: Thu, 8 Jan 2009 21:44:24 +0000 Subject: Fix build with libavcodec < 51.68.0. This covers the internal snapshot and the version in Debian lenny. --- ChangeLog | 1 + 1 file changed, 1 insertion(+) (limited to 'ChangeLog') diff --git a/ChangeLog b/ChangeLog index c1424698a..d436f451d 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,4 +1,5 @@ xine-lib (1.1.17) 2009-??-?? + * Fix build with older ffmpeg, both internal and in Debian 5.0. xine-lib (1.1.16) 2009-01-07 * Security fixes: -- cgit v1.2.3 From 03f921b835ee466de2e32fb60815457db12b279d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Franti=C5=A1ek=20Dvo=C5=99=C3=A1k?= Date: Fri, 9 Jan 2009 18:03:33 +0100 Subject: libcaca version 0.99beta15 required (new dithering feature). Fixes bug #194. --- ChangeLog | 1 + 1 file changed, 1 insertion(+) (limited to 'ChangeLog') diff --git a/ChangeLog b/ChangeLog index d436f451d..fdea0eb67 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,5 +1,6 @@ xine-lib (1.1.17) 2009-??-?? * Fix build with older ffmpeg, both internal and in Debian 5.0. + * Add version check for CACA library and disable CACA plugin if needed xine-lib (1.1.16) 2009-01-07 * Security fixes: -- cgit v1.2.3