[ubuntu/feisty-security] vlc_0.8.6.release-0ubuntu4.2_i386_translations.tar.gz, vlc_0.8.6.release-0ubuntu4.2_amd64_translations.tar.gz, vlc, vlc_0.8.6.release-0ubuntu4.2_sparc_translations.tar.gz, vlc_0.8.6.release-0ubuntu4.2_ia64_translations.tar.gz, vlc_0.8.6.release-0ubuntu4.2_powerpc_translations.tar.gz 0.8.6.release-0ubuntu4.2 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Sep 30 16:56:36 BST 2008


vlc (0.8.6.release-0ubuntu4.2) feisty-security; urgency=low

  * SECURITY UPDATE: (LP: #207284)
   + debian/patches/031_CVE-2008-1489.diff
    - Integer overflow in the MP4_ReadBox_rdrf function in libmp4.c allows
      remote attackers to cause a denial of service (crash) and possibly
      execute arbitrary code via a crafted MP4 RDRF box that triggers a
      heap-based buffer overflow.

  * References
   + http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2008-1489
   + http://trac.videolan.org/vlc/changeset/09572892df7e72c0d4e598c0b5e076cf330d8b0a

Date: Tue, 01 Apr 2008 02:58:30 +0200
Changed-By: Emanuele Gentili <emgent at emanuele-gentili.com>
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
https://launchpad.net/ubuntu/feisty/+source/vlc/0.8.6.release-0ubuntu4.2
-------------- next part --------------
Format: 1.7
Date: Tue, 01 Apr 2008 02:58:30 +0200
Source: vlc
Binary: libvlc0 libvlc0-dev mozilla-plugin-vlc vlc vlc-nox vlc-plugin-alsa vlc-plugin-arts vlc-plugin-esd vlc-plugin-ggi vlc-plugin-glide vlc-plugin-sdl vlc-plugin-svgalib wxvlc
Architecture: amd64_translations amd64 i386_translations i386 all ia64_translations ia64 powerpc_translations powerpc source sparc_translations sparc
Version: 0.8.6.release-0ubuntu4.2
Distribution: feisty-security
Urgency: low
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
Changed-By: Emanuele Gentili <emgent at emanuele-gentili.com>
Description:
 libvlc0    - multimedia player and streamer library
 libvlc0-dev - development files for VLC
 mozilla-plugin-vlc - multimedia plugin for web browsers based on VLC
 vlc        - multimedia player and streamer
 vlc-nox    - multimedia player and streamer (without X support)
 vlc-plugin-arts - aRts audio output plugin for VLC
 vlc-plugin-esd - Esound audio output plugin for VLC
 vlc-plugin-ggi - GGI video output plugin for VLC
 vlc-plugin-sdl - SDL video and audio output plugin for VLC
 vlc-plugin-alsa - dummy transitional package
 vlc-plugin-glide - Glide video output plugin for VLC
 vlc-plugin-svgalib - SVGAlib video output plugin for VLC
 wxvlc      - dummy transitional package
Changes:
 vlc (0.8.6.release-0ubuntu4.2) feisty-security; urgency=low
 .
   * SECURITY UPDATE: (LP: #207284)
    + debian/patches/031_CVE-2008-1489.diff
     - Integer overflow in the MP4_ReadBox_rdrf function in libmp4.c allows
       remote attackers to cause a denial of service (crash) and possibly
       execute arbitrary code via a crafted MP4 RDRF box that triggers a
       heap-based buffer overflow.
 .
   * References
    + http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2008-1489
    + http://trac.videolan.org/vlc/changeset/09572892df7e72c0d4e598c0b5e076cf330d8b0a
Files:
 0e0797b8e521d893dea9b1f933d0d15e 4293930 raw-translations - vlc_0.8.6.release-0ubuntu4.2_amd64_translations.tar.gz
 f1721618ca5f0210ad5feb763274b174 1170694 graphics optional vlc_0.8.6.release-0ubuntu4.2_amd64.deb
 635031f200d3aaba4e4ccaf3d90910f9 4729788 net optional vlc-nox_0.8.6.release-0ubuntu4.2_amd64.deb
 7483a1252d7f0304dc6357396ba3e978 985728 libs optional libvlc0_0.8.6.release-0ubuntu4.2_amd64.deb
 656a25d5801b9db89b087067dec72bc6 20222 libdevel optional libvlc0-dev_0.8.6.release-0ubuntu4.2_amd64.deb
 4788883b058d14155397f0ee2719e720 4588 graphics optional vlc-plugin-esd_0.8.6.release-0ubuntu4.2_amd64.deb
 d339866642bc51a62e6d0d6da7c88961 11444 graphics optional vlc-plugin-sdl_0.8.6.release-0ubuntu4.2_amd64.deb
 d3b8814aa09ff958be63e6551daf8aa0 6222 graphics optional vlc-plugin-ggi_0.8.6.release-0ubuntu4.2_amd64.deb
 5561cc9f1b133c5324766af0750f32e8 4278 graphics optional vlc-plugin-arts_0.8.6.release-0ubuntu4.2_amd64.deb
 639d96063b39d5dfbfa03f5b9a1ed995 39136 graphics optional mozilla-plugin-vlc_0.8.6.release-0ubuntu4.2_amd64.deb
 cfe03fe2adfa91c78ba1710dc133ea7d 820 graphics optional vlc-plugin-alsa_0.8.6.release-0ubuntu4.2_all.deb
 897810283dd9c2fd88c4e95b2cbd7c72 814 graphics optional wxvlc_0.8.6.release-0ubuntu4.2_all.deb
 87718ccbc84219a0c3b54800a01c8ac7 4293933 raw-translations - vlc_0.8.6.release-0ubuntu4.2_i386_translations.tar.gz
 4df2e36409d76d344e04527796cf6c08 1158210 graphics optional vlc_0.8.6.release-0ubuntu4.2_i386.deb
 be27ce21763e3823dea7b80007075744 4681192 net optional vlc-nox_0.8.6.release-0ubuntu4.2_i386.deb
 735b3ac262c90eb5ded4dbd0b426fa2e 984564 libs optional libvlc0_0.8.6.release-0ubuntu4.2_i386.deb
 bc4a5c46146afe3b1ba793cee7612363 20210 libdevel optional libvlc0-dev_0.8.6.release-0ubuntu4.2_i386.deb
 5b5afa40a971eb10c8ea4542f7a45bd3 4878 graphics optional vlc-plugin-esd_0.8.6.release-0ubuntu4.2_i386.deb
 f549ecb2a02f63bbf6b980775c53dc5a 10774 graphics optional vlc-plugin-sdl_0.8.6.release-0ubuntu4.2_i386.deb
 96c432b036f3bd31b4e5e26b66383527 5974 graphics optional vlc-plugin-ggi_0.8.6.release-0ubuntu4.2_i386.deb
 552f4985f0004614b28269b1c09a503d 4200 graphics optional vlc-plugin-glide_0.8.6.release-0ubuntu4.2_i386.deb
 6187276b8c096ebbb5a85fe26a229144 4158 graphics optional vlc-plugin-arts_0.8.6.release-0ubuntu4.2_i386.deb
 205471cb711a79cd23c23cc34b4ef9ea 38020 graphics optional mozilla-plugin-vlc_0.8.6.release-0ubuntu4.2_i386.deb
 cc7ee46a63ba262929687a7ed577486b 4592 graphics optional vlc-plugin-svgalib_0.8.6.release-0ubuntu4.2_i386.deb
 a78fafaf512cd4db1c7e36a1d9b0bb0f 4293930 raw-translations - vlc_0.8.6.release-0ubuntu4.2_ia64_translations.tar.gz
 9653124692b0e27006547c478264c8ce 1589726 graphics optional vlc_0.8.6.release-0ubuntu4.2_ia64.deb
 6154598b8a511324967365fcb26ec389 5963250 net optional vlc-nox_0.8.6.release-0ubuntu4.2_ia64.deb
 29bf7b15b62486ed215c6767babd3740 1490356 libs optional libvlc0_0.8.6.release-0ubuntu4.2_ia64.deb
 705b93771c4cecffa6f43bdb8f0fb670 20152 libdevel optional libvlc0-dev_0.8.6.release-0ubuntu4.2_ia64.deb
 31a8ad788afb4a3c4395c807279ecb69 6276 graphics optional vlc-plugin-esd_0.8.6.release-0ubuntu4.2_ia64.deb
 fa7dd02e939d828cc397621b4ff9ae4a 17214 graphics optional vlc-plugin-sdl_0.8.6.release-0ubuntu4.2_ia64.deb
 bc30ac30ef0d9d580802d7f55b437a6f 9176 graphics optional vlc-plugin-ggi_0.8.6.release-0ubuntu4.2_ia64.deb
 eff4f53c43e384a94a8251cf16bfb548 5552 graphics optional vlc-plugin-arts_0.8.6.release-0ubuntu4.2_ia64.deb
 eabf03e87ab1210df8e019f7d799315b 51132 graphics optional mozilla-plugin-vlc_0.8.6.release-0ubuntu4.2_ia64.deb
 1d0ace647997b8248e3f5183d49c7072 4293924 raw-translations - vlc_0.8.6.release-0ubuntu4.2_powerpc_translations.tar.gz
 5b773dda1ca17e77191a19595c8d3bbc 1243672 graphics optional vlc_0.8.6.release-0ubuntu4.2_powerpc.deb
 b94a48343873c62d9a302fec7fa8a08e 5228640 net optional vlc-nox_0.8.6.release-0ubuntu4.2_powerpc.deb
 26c081e4ee861a7f15bd3a3a72d0ae45 1072400 libs optional libvlc0_0.8.6.release-0ubuntu4.2_powerpc.deb
 c7d21f34ef92f3f637ccf5c8825d892a 20220 libdevel optional libvlc0-dev_0.8.6.release-0ubuntu4.2_powerpc.deb
 f66df4010e9165f7ac6b7193e7689c37 7650 graphics optional vlc-plugin-esd_0.8.6.release-0ubuntu4.2_powerpc.deb
 21ebe6e3d267621648d049b8a39ac647 14796 graphics optional vlc-plugin-sdl_0.8.6.release-0ubuntu4.2_powerpc.deb
 9995f15bbdca8e20d6f014413169a071 8988 graphics optional vlc-plugin-ggi_0.8.6.release-0ubuntu4.2_powerpc.deb
 80fed9843cd4f364a68b80a94fa1566d 6402 graphics optional vlc-plugin-arts_0.8.6.release-0ubuntu4.2_powerpc.deb
 e4831d9900e0dd3bbc65401845e1e9ba 41772 graphics optional mozilla-plugin-vlc_0.8.6.release-0ubuntu4.2_powerpc.deb
 118cff2348fbb3c48919c99d6d72d5fd 2151 graphics optional vlc_0.8.6.release-0ubuntu4.2.dsc
 bee69fca9180718f8b34f035ee66111b 35276 graphics optional vlc_0.8.6.release-0ubuntu4.2.diff.gz
 0b6beb284458358a3c69aee203a879f5 4293930 raw-translations - vlc_0.8.6.release-0ubuntu4.2_sparc_translations.tar.gz
 a04119c2c122976e9ce5c4378775163a 1187564 graphics optional vlc_0.8.6.release-0ubuntu4.2_sparc.deb
 492a5dd4c9e21ffa37f00b8ebedc5e61 4708616 net optional vlc-nox_0.8.6.release-0ubuntu4.2_sparc.deb
 293bb451154a4d0011366e4c4b62ecde 982824 libs optional libvlc0_0.8.6.release-0ubuntu4.2_sparc.deb
 579d9a694c017dc4031c184c539506e9 20162 libdevel optional libvlc0-dev_0.8.6.release-0ubuntu4.2_sparc.deb
 de5d19457089cad7f6ed6f29499bbd52 4820 graphics optional vlc-plugin-esd_0.8.6.release-0ubuntu4.2_sparc.deb
 956592a416ffeca011ebce96d541f3ee 10456 graphics optional vlc-plugin-sdl_0.8.6.release-0ubuntu4.2_sparc.deb
 a7ccd8a77ab51d24fd06fbce4ecf67a0 5900 graphics optional vlc-plugin-ggi_0.8.6.release-0ubuntu4.2_sparc.deb
 7ade6c39a3357d1419a8e7bd99fb6f54 3998 graphics optional vlc-plugin-arts_0.8.6.release-0ubuntu4.2_sparc.deb
 a7cc721d7cbc095ea6c6ea5f9db53078 34994 graphics optional mozilla-plugin-vlc_0.8.6.release-0ubuntu4.2_sparc.deb
Launchpad-Bugs-Fixed: 207284
Original-Maintainer: Sam Hocevar (Debian packages) <sam+deb at zoy.org>


More information about the feisty-changes mailing list