Accepted mplayer 1.0~rc1-12etch2 (source i386 all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 8 Feb 2008 20:32:41 +0100
Source: mplayer
Binary: mplayer-doc mplayer
Architecture: source i386 all
Version: 1.0~rc1-12etch2
Distribution: stable-security
Urgency: high
Maintainer: A Mennucc1 <mennucc1@debian.org>
Changed-By: A Mennucc1 <mennucc1@debian.org>
Description:
mplayer - The Movie Player
mplayer-doc - documentation for MPlayer
Closes: 464060 464532 464533
Changes:
mplayer (1.0~rc1-12etch2) stable-security; urgency=high
.
* fix SVN25823 for
CVE-2008-0630, buffer overflow via crafted url ,
thanks Niko Golde (closes: #464532)
* fix SVN25824 for
CVE-2008-0629, buffer overflow via crafted cddb title
thanks Niko Golde (closes: #464533)
* fix for CVE-2008-0485 Array index error in libmpdemux/demux_mov.c
a.k.a. CORE-2007-1218: MPlayer 1.0rc2 buffer overflow vulnerability
thanks Stefan Fritsch
* fix for CVE-2008-0486 Array index vulnerability in libmpdemux/demux_audio.c
a.k.a. CORE-2008-0122: MPlayer arbitrary pointer dereference
thanks Stefan Fritsch (closes: #464060)
Files:
e247c07b25f52ae90c66d1147ed2dad3 1265 graphics optional mplayer_1.0~rc1-12etch2.dsc
4fbe0a18dad58eb0fde6388bfa0fd6fe 82320 graphics optional mplayer_1.0~rc1-12etch2.diff.gz
dcae457fc598d095481ae958b4b2be33 2042982 graphics optional mplayer-doc_1.0~rc1-12etch2_all.deb
fc9d62d80284dcb7501d4aa46d90705f 4556720 graphics optional mplayer_1.0~rc1-12etch2_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHrNDw9B/tjjP8QKQRAnaQAJ9CFXIMOOTzZm0l+Vze1HpOrRBVqACdG20v
UvBP/cfX6B7uk/aPAJA1Oko=
=k6y2
-----END PGP SIGNATURE-----
Accepted:
mplayer-doc_1.0~rc1-12etch2_all.deb
to pool/main/m/mplayer/mplayer-doc_1.0~rc1-12etch2_all.deb
mplayer_1.0~rc1-12etch2.diff.gz
to pool/main/m/mplayer/mplayer_1.0~rc1-12etch2.diff.gz
mplayer_1.0~rc1-12etch2.dsc
to pool/main/m/mplayer/mplayer_1.0~rc1-12etch2.dsc
mplayer_1.0~rc1-12etch2_i386.deb
to pool/main/m/mplayer/mplayer_1.0~rc1-12etch2_i386.deb