Accepted: xine-lib 1.1.12-2ubuntu1 (source)

Reinhard Tartler siretart at tauware.de
Thu May 8 13:00:24 BST 2008 

Accepted:
 OK: xine-lib_1.1.12.orig.tar.gz
 OK: xine-lib_1.1.12-2ubuntu1.diff.gz
 OK: xine-lib_1.1.12-2ubuntu1.dsc
     -> Component: main Section: libs

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 08 May 2008 13:49:26 +0200
Source: xine-lib
Binary: libxine1-doc libxine1 libxine1-bin libxine-dev libxine1-ffmpeg libxine1-gnome libxine1-console libxine1-x libxine1-misc-plugins libxine1-dbg libxine1-plugins libxine1-all-plugins
Architecture: source
Version: 1.1.12-2ubuntu1
Distribution: intrepid
Urgency: high
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Reinhard Tartler <siretart at tauware.de>
Description: 
 libxine-dev - the xine video player library, development packages
 libxine1   - the xine video/media player library, meta-package
 libxine1-all-plugins - the xine video/media player library, meta package
 libxine1-bin - the xine video/media player library, binary files
 libxine1-console - libaa/libcaca/framebuffer/directfb related plugins for libxine1
 libxine1-dbg - debug symbols for libxine1
 libxine1-doc - the xine video player library, documentation files
 libxine1-ffmpeg - MPEG-related plugins for libxine1
 libxine1-gnome - GNOME-related plugins for libxine1
 libxine1-misc-plugins - Input, audio output and post plugins for libxine1
 libxine1-plugins - the xine video/media player library, meta package
 libxine1-x - X desktop video output plugins for libxine1
Closes: 462663 473499 473631 474316
Changes: 
 xine-lib (1.1.12-2ubuntu1) intrepid; urgency=low
 .
   * Merge from debian unstable, remaining changes:
     - disable the jack plugin
     - add Replaces: libxine-main1 (<< 1.1.2+repacked1-0ubuntu1)
       in libxine1-bin to make dapper->hardy upgrades work (LP #203605)
     - Modify Maintainer value to match the DebianMaintainerField
       specification.
 .
 xine-lib (1.1.12-2) unstable; urgency=high
 .
   * Fixes from upstream hg:
     - CVE-2008-1878: Buffer overflow in the NSF demuxer which may allow
       remote attackers to cause a denial of service (crash) or possibly
       execute arbitrary code via an NSF file with a long title or copyright
       message.
       (Our chosen option is to patch and disable this code.)
     - Backport more calloc usage from the 1.2 branch for extra safety
       against possible integer overflows such as found in CVE-2008-1482.
 .
 xine-lib (1.1.12-1) unstable; urgency=high
 .
   * New upstream release.
     - CVE-2008-1686: Insufficient boundary check in speex audio decoder.
     - New tool "xine-list-1.1", which front-end maintainers will find useful
       for updating .desktop files at install time and in conjunction with
       dpkg triggers.
 .
 xine-lib (1.1.11.1-3) unstable; urgency=medium
 .
   * Fixes from upstream hg:
     - Matroska demuxer regression. (Closes: #474316)
     - PulseAudio plugin backported & re-enabled.
       This takes precedence over ALSA, but falls back cleanly.
   * Re-enabled & replaced the JACK audio-put plugin. (Closes: #462663)
     This has not yet been committed upstream.
   * Don't link with libstdc++ or libm when linking with libmodplug.
     (Workaround for bug 457278 and buggy build environments, fixing FTBFS.)
   * Urgency=medium; t-p-u has a security-patched version, but it also has
     backported bugs...
 .
 xine-lib (1.1.11.1-2) unstable; urgency=high
 .
   * Fixes from upstream hg:
     - Quicktime demuxer regression. (Closes: #473499, #473631)
     - Wavpack MIME type information.
Files: 
 52b810a4e4ed6d2d7bd35c51ad9013ba 2000 libs optional xine-lib_1.1.12-2ubuntu1.dsc
 393e2a46dd8e77e7266056f1f10b637e 9068443 libs optional xine-lib_1.1.12.orig.tar.gz
 fc34fab25ae67a485884c9272db1869f 40366 libs optional xine-lib_1.1.12-2ubuntu1.diff.gz
Original-Maintainer: Reinhard Tartler <siretart at tauware.de>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Debian Powered!

iQCVAwUBSCLqNe/EQKAAafKPAQJ6mQQAk2+joViquq4pyljPhgAIwZlKX6jsDa9U
GLW/ce/FAponpq6WyWAfy5RLSFldnbWmWOdZmfN+AUR7MKwdua5ny9itnlQJUPAe
CgDwNDC2M4saVgax/ffif0Oq4g/1V+MiIJXNBf2e//oMkFnPk9cM05fsE68FoNpD
phGLiBDj7ss=
=8bbh
-----END PGP SIGNATURE-----

More information about the Intrepid-changes mailing list