-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Sun, 6 Apr 2008 02:59:31 +0000 Source: vlc Binary: wxvlc vlc-plugin-sdl vlc-plugin-ggi vlc-plugin-alsa vlc-plugin-glide vlc-plugin-esd mozilla-plugin-vlc vlc libvlc0 vlc-plugin-arts vlc-nox vlc-plugin-svgalib libvlc0-dev Architecture: source amd64 all Version: 0.8.6-svn20061012.debian-5.1+etch2 Distribution: stable-security Urgency: high Maintainer: Sam Hocevar (Debian packages) <sam+deb@zoy.org> Changed-By: Devin Carraway <devin@debian.org> Description: libvlc0 - multimedia player and streamer library libvlc0-dev - development files for VLC mozilla-plugin-vlc - multimedia plugin for web browsers based on VLC vlc - multimedia player and streamer vlc-nox - multimedia player and streamer (without X support) vlc-plugin-alsa - dummy transitional package vlc-plugin-arts - aRts audio output plugin for VLC vlc-plugin-esd - Esound audio output plugin for VLC vlc-plugin-ggi - GGI video output plugin for VLC vlc-plugin-sdl - SDL video and audio output plugin for VLC wxvlc - dummy transitional package Changes: vlc (0.8.6-svn20061012.debian-5.1+etch2) stable-security; urgency=high . * Non-maintainer upload by the security team * sec-subtitle_buffer_overflow.diff: + CVE-2007-6681: Stack buffer overflow in subtitle demuxer * sec-httpd_formatstring.diff: + CVE-2007-6682: Format string vulnerability in HTTP streaming * sec-backported-CVE-2007-6683.patch: + CVE-2007-6683: Arbitrary file overwrite vulnerability in browser plugin * sec-CVE-2008-0296_CVE-2008-0295.diff: + CVE-2008-0295: Heap buffer overflow in RTSP session description protocol (SDP) handlers + CVE-2008-0296: Heap buffer overflow in RTSP stream handling * sec-backported-CVE-2008-0073.patch: + CVE-2008-0073: Array index error in RTSP session description protocol metadata handling * sec-CVE-2008-0984.diff: + CVE-2008-0984: Inadequate integer bounds checking enables memory scribble and arbitrary code execution Files: 6337a0f1aa8c1f4b1a98648d66c55c7f 2614 graphics optional vlc_0.8.6-svn20061012.debian-5.1+etch2.dsc 4429c3a0764cadf7bdcb67a90bdd5cac 2383751 graphics optional vlc_0.8.6-svn20061012.debian-5.1+etch2.diff.gz 0eb16d5cb4300c269d767d8efcf6fd56 784 graphics optional vlc-plugin-alsa_0.8.6-svn20061012.debian-5.1+etch2_all.deb 6e2045ca43d51b8d8651640405c6e501 778 graphics optional wxvlc_0.8.6-svn20061012.debian-5.1+etch2_all.deb 86f1045c52f86d0072e62c7bc4710961 1144080 graphics optional vlc_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb 754a2eea305e438ca4ea530baccb41f6 4665850 net optional vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb 6a43d0f74f693ea25a5e96e76b9cbe5b 951086 libs optional libvlc0_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb 26a4e777b60bab308122f54a121571ed 20190 libdevel optional libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb 81e7edd9360bc8718f4e50c068aa5e2e 4518 graphics optional vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb 19e27b3dcc17d19d40c63a424ffb3b74 11330 graphics optional vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb 4761ccae31f7fb91df097ae02d1db13b 6052 graphics optional vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb 358a9c42de2f15e0050630ce8db82f49 4186 graphics optional vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb 15815cd72ec44625960f56121fbdd163 36768 graphics optional mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFH+b1tU5XKDemr/NIRAuP9AKCSRFQyV7PTJgQvuu8a+ey7xnOWRQCg9U3c euxbY3cW1p2KwsO4dITbPO8= =/HfI -----END PGP SIGNATURE----- Accepted: libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb to pool/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb libvlc0_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb to pool/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb to pool/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb to pool/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb vlc-plugin-alsa_0.8.6-svn20061012.debian-5.1+etch2_all.deb to pool/main/v/vlc/vlc-plugin-alsa_0.8.6-svn20061012.debian-5.1+etch2_all.deb vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb to pool/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb to pool/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb to pool/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb to pool/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb vlc_0.8.6-svn20061012.debian-5.1+etch2.diff.gz to pool/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2.diff.gz vlc_0.8.6-svn20061012.debian-5.1+etch2.dsc to pool/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2.dsc vlc_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb to pool/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb wxvlc_0.8.6-svn20061012.debian-5.1+etch2_all.deb to pool/main/v/vlc/wxvlc_0.8.6-svn20061012.debian-5.1+etch2_all.deb