-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Tue, 22 Jan 2008 07:38:58 +0100 Source: vlc Binary: wxvlc vlc-plugin-sdl vlc-plugin-ggi vlc-plugin-alsa vlc-plugin-glide vlc-plugin-esd mozilla-plugin-vlc vlc libvlc0 vlc-plugin-arts vlc-nox vlc-plugin-svgalib libvlc0-dev Architecture: source all i386 Version: 0.8.6.c-4.1~lenny2 Distribution: testing-security Urgency: high Maintainer: Debian multimedia packages maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org> Changed-By: Nico Golde <nion@debian.org> Description: libvlc0 - multimedia player and streamer library libvlc0-dev - development files for VLC mozilla-plugin-vlc - multimedia plugin for web browsers based on VLC vlc - multimedia player and streamer vlc-nox - multimedia player and streamer (without X support) vlc-plugin-alsa - dummy transitional package vlc-plugin-arts - aRts audio output plugin for VLC vlc-plugin-esd - Esound audio output plugin for VLC vlc-plugin-ggi - GGI video output plugin for VLC vlc-plugin-glide - Glide video output plugin for VLC vlc-plugin-sdl - SDL video and audio output plugin for VLC vlc-plugin-svgalib - SVGAlib video output plugin for VLC wxvlc - dummy transitional package Closes: 461544 Changes: vlc (0.8.6.c-4.1~lenny2) testing-security; urgency=high . * Non-maintainer upload by security team. * This update addresses the following security issues (Closes: #461544). - CVE-2008-0295: Heap-based buffer overflow in real_sdpplin.c which could lead to user-assisted arbitrary code execution via crafted SDP data. - CVE-2008-0296: Heap-based buffer overflow in libaccess_realrtsp plugin which might lead to arbitrary code execution via a crafted RTSP server. Files: 77abf62acf397464da7e6b7caf630610 2729 graphics optional vlc_0.8.6.c-4.1~lenny2.dsc 9ad689ee746749c38f8897c4346ab5db 37626 graphics optional vlc_0.8.6.c-4.1~lenny2.diff.gz 2274f4a142781d73e4e9cdf87c36e6fc 804 graphics optional vlc-plugin-alsa_0.8.6.c-4.1~lenny2_all.deb 64be32a764536595461832f554f7e57f 798 graphics optional wxvlc_0.8.6.c-4.1~lenny2_all.deb 5e4890a2a64fc3374bf4c855e81519c6 1143294 graphics optional vlc_0.8.6.c-4.1~lenny2_i386.deb d70f5a7a49e11d12e7fbdd0ad909554f 4707590 net optional vlc-nox_0.8.6.c-4.1~lenny2_i386.deb 89ec86aa15df5a10aa73077e55e7fa3d 466542 libs optional libvlc0_0.8.6.c-4.1~lenny2_i386.deb 94e03a1c80de4d284241f0c058be8878 511470 libdevel optional libvlc0-dev_0.8.6.c-4.1~lenny2_i386.deb 52b5a7f11937d5aca9205ad8bcbe67f9 4824 graphics optional vlc-plugin-esd_0.8.6.c-4.1~lenny2_i386.deb 0ab8054ca2fea60b096736e42b6d78ae 10888 graphics optional vlc-plugin-sdl_0.8.6.c-4.1~lenny2_i386.deb a8370785e1478d7cd84cf049aa9723c9 5936 graphics optional vlc-plugin-ggi_0.8.6.c-4.1~lenny2_i386.deb 47b1cb193012a799a62bd617b28c781a 4200 graphics optional vlc-plugin-glide_0.8.6.c-4.1~lenny2_i386.deb 55a3b190ce62d88fce5140336e66bd18 4080 graphics optional vlc-plugin-arts_0.8.6.c-4.1~lenny2_i386.deb 7ec8550c50ba6dde5cf61dc31e286995 37786 graphics optional mozilla-plugin-vlc_0.8.6.c-4.1~lenny2_i386.deb 0eb0c4e2ffd5a0094b8307e2cf7b0baf 4540 graphics optional vlc-plugin-svgalib_0.8.6.c-4.1~lenny2_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHlfd3HYflSXNkfP8RApdMAJ4za4PSffs2qBSABlIH12DL2Ain5gCeIoMo F8XuOvYGjxjfb1hNpkRq7YA= =Ytpp -----END PGP SIGNATURE----- Accepted: libvlc0-dev_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/libvlc0-dev_0.8.6.c-4.1~lenny2_i386.deb libvlc0_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/libvlc0_0.8.6.c-4.1~lenny2_i386.deb mozilla-plugin-vlc_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/mozilla-plugin-vlc_0.8.6.c-4.1~lenny2_i386.deb vlc-nox_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/vlc-nox_0.8.6.c-4.1~lenny2_i386.deb vlc-plugin-alsa_0.8.6.c-4.1~lenny2_all.deb to pool/main/v/vlc/vlc-plugin-alsa_0.8.6.c-4.1~lenny2_all.deb vlc-plugin-arts_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/vlc-plugin-arts_0.8.6.c-4.1~lenny2_i386.deb vlc-plugin-esd_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/vlc-plugin-esd_0.8.6.c-4.1~lenny2_i386.deb vlc-plugin-ggi_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/vlc-plugin-ggi_0.8.6.c-4.1~lenny2_i386.deb vlc-plugin-glide_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/vlc-plugin-glide_0.8.6.c-4.1~lenny2_i386.deb vlc-plugin-sdl_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/vlc-plugin-sdl_0.8.6.c-4.1~lenny2_i386.deb vlc-plugin-svgalib_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/vlc-plugin-svgalib_0.8.6.c-4.1~lenny2_i386.deb vlc_0.8.6.c-4.1~lenny2.diff.gz to pool/main/v/vlc/vlc_0.8.6.c-4.1~lenny2.diff.gz vlc_0.8.6.c-4.1~lenny2.dsc to pool/main/v/vlc/vlc_0.8.6.c-4.1~lenny2.dsc vlc_0.8.6.c-4.1~lenny2_i386.deb to pool/main/v/vlc/vlc_0.8.6.c-4.1~lenny2_i386.deb wxvlc_0.8.6.c-4.1~lenny2_all.deb to pool/main/v/vlc/wxvlc_0.8.6.c-4.1~lenny2_all.deb
