Accepted mplayer 1.0~rc2-8 (source all i386)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 8 Feb 2008 20:42:41 +0100
Source: mplayer
Binary: mplayer mplayer-doc
Architecture: source all i386
Version: 1.0~rc2-8
Distribution: unstable
Urgency: low
Maintainer: A Mennucc1 <mennucc1@debian.org>
Changed-By: A Mennucc1 <mennucc1@debian.org>
Description:
mplayer - movie player for Unix-like systems
mplayer-doc - documentation for MPlayer
Closes: 464060 464532 464533
Changes:
mplayer (1.0~rc2-8) unstable; urgency=low
.
* fix SVN25823 for
CVE-2008-0630, buffer overflow via crafted url ,
thanks Niko Golde (closes: #464532)
* fix SVN25824 for
CVE-2008-0629, buffer overflow via crafted cddb title
thanks Niko Golde (closes: #464533)
* fix for CVE-2008-0485 Array index error in libmpdemux/demux_mov.c
a.k.a. CORE-2007-1218: MPlayer 1.0rc2 buffer overflow vulnerability
thanks Stefan Fritsch
* fix for CVE-2008-0486 Array index vulnerability in libmpdemux/demux_audio.c
a.k.a. CORE-2008-0122: MPlayer arbitrary pointer dereference
thanks Stefan Fritsch (closes: #464060)
Files:
0568765d5a84e0ff43e8d694c8116f29 1421 graphics optional mplayer_1.0~rc2-8.dsc
cee9732063a7d2247a7af449a7f79fa7 72030 graphics optional mplayer_1.0~rc2-8.diff.gz
5b259bd81ddb9c718ac306e5a9c501f4 2457170 graphics optional mplayer-doc_1.0~rc2-8_all.deb
163f1d55b6dedef7258a0403f6b36917 5054576 graphics optional mplayer_1.0~rc2-8_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHrNtd9B/tjjP8QKQRAkmBAJ9hRmLG1uk1Z9cdhUF2/ITQvcHXWQCdFRQb
hGuhNPIf4U98nbDr39mRBWc=
=HPB0
-----END PGP SIGNATURE-----
Accepted:
mplayer-doc_1.0~rc2-8_all.deb
to pool/main/m/mplayer/mplayer-doc_1.0~rc2-8_all.deb
mplayer_1.0~rc2-8.diff.gz
to pool/main/m/mplayer/mplayer_1.0~rc2-8.diff.gz
mplayer_1.0~rc2-8.dsc
to pool/main/m/mplayer/mplayer_1.0~rc2-8.dsc
mplayer_1.0~rc2-8_i386.deb
to pool/main/m/mplayer/mplayer_1.0~rc2-8_i386.deb