Ubuntu
xine-lib package

lp:ubuntu/hoary-security/xine-lib

Created by James Westby on 2009-06-28 and last modified on 2009-06-28

Members of Ubuntu branches can upload to this branch. Log in for directions.

No branches dependent on this one.

7. By Kees Cook on 2006-09-29: * SECURITY UPDATE: Arbitrary code execution with crafted streams.
* src/demuxers/demux_avi.c: Fix buffer overflow in AVI index size.
* src/libffmpeg/libavcodec/4xm.c: Fix integer overflow.
* References
  - CVE-2006-4799
  - http://xine.cvs.sourceforge.net/xine/xine-lib/src/demuxers/demux_avi.c?r1=1.224&r2=1.225
  - CVE-2006-4800
  - http://bugs.gentoo.org/show_bug.cgi?id=133520
6. By Martin Pitt on 2006-07-11: * SECURITY UPDATE: Arbitrary code execution with crafted streams.
* src/input/mms[h].c: Fix multiple buffer overflows in embedded libmms,
thanks to patch from Matthias Hopf.
* src/input/input_http.c: Fixed previous security patch (s/buflen/BUFSIZE).
5. By Martin Pitt on 2006-06-07: * SECURITY UPDATE: Remote DoS and probably code execution.
* src/input/input_http.c:
  - Fix buffer overflow in http_plugin_open().
  - Patch from upstream CVS.
  - CVE-2006-2802
4. By Martin Pitt on 2005-12-16: Rebuild.
3. By Chris Halls on 2005-04-06: * Remove internal libmad support and patch to use external libmad library.
  Please install libmad0 to restore support for restricted formats.
* debain/shlibdeps.sh:
  - Generate Suggests for xineplug_decode_mad.so
  - Fix problem that caused nothing to be generated if a Recommends or
    Suggests library is missing
2. By Charles Majola on 2005-03-14: Rebuild against libflac6 (Closes #7576)
1. By Charles Majola on 2005-03-14: Import upstream version 1.0

This branch contains Public information

Everyone can see this information.