[ubuntu/precise-security] vlc 2.0.8-0ubuntu0.12.04.1 (Accepted)
Seth Arnold
seth.arnold at canonical.com
Fri Aug 2 05:56:23 UTC 2013
vlc (2.0.8-0ubuntu0.12.04.1) precise-security; urgency=low
* New bug-fixing upstream release (LP: #1186780).
* SECURITY UPDATE: Denial of service (crash) and possibly execute arbitrary
code via a crafted MKV file (disputed).
- Improve resistance and checking against malformed MKV files.
- CVE-2013-3245
* SECURITY UPDATE: Two xss vulnerabilities.
- CVE-2013-3565
* SECURITY UPDATE: Buffer Overflow in ASF Demuxer.
- CVE-2013-1954
- VideoLAN-SA-1302
Date: 2013-08-02 01:25:33.167304+00:00
Changed-By: Benjamin Drung <bdrung at debian.org>
Signed-By: Seth Arnold <seth.arnold at canonical.com>
https://launchpad.net/ubuntu/precise/+source/vlc/2.0.8-0ubuntu0.12.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list