-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 18 Jun 2009 05:17:43 +0000 Source: vlc Binary: wxvlc vlc-plugin-sdl vlc-plugin-ggi vlc-plugin-alsa vlc-plugin-glide vlc-plugin-esd mozilla-plugin-vlc vlc libvlc0 vlc-plugin-arts vlc-nox vlc-plugin-svgalib libvlc0-dev Architecture: source i386 all Version: 0.8.6-svn20061012.debian-5.1+etch3 Distribution: oldstable-security Urgency: high Maintainer: Sam Hocevar (Debian packages) <sam+deb@zoy.org> Changed-By: Steffen Joeris <white@debian.org> Description: libvlc0 - multimedia player and streamer library libvlc0-dev - development files for VLC mozilla-plugin-vlc - multimedia plugin for web browsers based on VLC vlc - multimedia player and streamer vlc-nox - multimedia player and streamer (without X support) vlc-plugin-alsa - dummy transitional package vlc-plugin-arts - aRts audio output plugin for VLC vlc-plugin-esd - Esound audio output plugin for VLC vlc-plugin-ggi - GGI video output plugin for VLC vlc-plugin-glide - Glide video output plugin for VLC vlc-plugin-sdl - SDL video and audio output plugin for VLC vlc-plugin-svgalib - SVGAlib video output plugin for VLC wxvlc - dummy transitional package Closes: 477805 478140 478140 480724 489004 496265 503118 504639 Changes: vlc (0.8.6-svn20061012.debian-5.1+etch3) oldstable-security; urgency=high . * Non-maintainer upload by the security team * Fix multiple integer overflows in demux/real.c, codec/cinepak.c and demux/mp4/libmp4.c (Closes: #478140) Fixes: CVE-2008-1768 * Fix buffer overflow in demux/subtitle.c (Closes: #477805) Fixes: CVE-2008-1881 * Fix integer overflow in demux/wav.c (Closes: #489004) Fixes: CVE-2008-2430 * Fix integer signedness error in mms/mmstu.c (Closes: #496265) Fixes: CVE-2008-3794 * Fix multiple integer overflows in demux/ty.c (Closes: #503118) Fixes: CVE-2008-4686 * Fix buffer overflow in access/vcd/cdrom.c (Closes: #504639) Fixes: CVE-2008-5032 * Fix memory corruption in codec/cinepak.c (Closes: #478140) Fixes: CVE-2008-1769 * Fix untrusted search path vulnerability in misc/modules.c (Closes: #480724) Fixes: CVE-2008-2147 Files: bc3a4f4ee0ecd699820b478e96beecad 2622 graphics optional vlc_0.8.6-svn20061012.debian-5.1+etch3.dsc aacfe6dc712b98ae872794d9d70fe1e3 2390010 graphics optional vlc_0.8.6-svn20061012.debian-5.1+etch3.diff.gz 12f8c6ef696cb7c6b8b1e33b313f72f0 786 graphics optional vlc-plugin-alsa_0.8.6-svn20061012.debian-5.1+etch3_all.deb 62c36d9c3fe088478b442efec17b5b7e 778 graphics optional wxvlc_0.8.6-svn20061012.debian-5.1+etch3_all.deb c55814ba9192c4c2c81a983bfb3b0b4d 1137756 graphics optional vlc_0.8.6-svn20061012.debian-5.1+etch3_i386.deb 3321d798ec1146fea206b6e4120a0801 4652906 net optional vlc-nox_0.8.6-svn20061012.debian-5.1+etch3_i386.deb 1c496575c6b3966348595a2ee9b5b822 959380 libs optional libvlc0_0.8.6-svn20061012.debian-5.1+etch3_i386.deb 5742bd41d213b498063e8070723361cf 20104 libdevel optional libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch3_i386.deb 2bf05cc5740357c059ca66feabf406b2 4820 graphics optional vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch3_i386.deb fb4d96ed4c70d57410aa1b9a3686d04c 10714 graphics optional vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch3_i386.deb 48a4e79963b7da791c165c484fc11d76 5842 graphics optional vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch3_i386.deb f137b88a817cc34f4ce3bece8f95d0b5 4138 graphics optional vlc-plugin-glide_0.8.6-svn20061012.debian-5.1+etch3_i386.deb 71906ef569dc94bbddbec713289ef3a8 4106 graphics optional vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch3_i386.deb 82b82e147a2460780cfda4d67e27acc4 36190 graphics optional mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch3_i386.deb b02d59bd875bbd9b36c4dc54a16f1992 4536 graphics optional vlc-plugin-svgalib_0.8.6-svn20061012.debian-5.1+etch3_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAko531QACgkQ62zWxYk/rQfYJwCfZ1NbZU0UuxklcjyLLR3RcMa4 UU4An1PhZ4DVkuWu6X9A3/v2h6vQ7rSn =9ggr -----END PGP SIGNATURE----- Accepted: libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch3_i386.deb libvlc0_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch3_i386.deb mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch3_i386.deb vlc-nox_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch3_i386.deb vlc-plugin-alsa_0.8.6-svn20061012.debian-5.1+etch3_all.deb to pool/main/v/vlc/vlc-plugin-alsa_0.8.6-svn20061012.debian-5.1+etch3_all.deb vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch3_i386.deb vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch3_i386.deb vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch3_i386.deb vlc-plugin-glide_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/vlc-plugin-glide_0.8.6-svn20061012.debian-5.1+etch3_i386.deb vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch3_i386.deb vlc-plugin-svgalib_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/vlc-plugin-svgalib_0.8.6-svn20061012.debian-5.1+etch3_i386.deb vlc_0.8.6-svn20061012.debian-5.1+etch3.diff.gz to pool/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch3.diff.gz vlc_0.8.6-svn20061012.debian-5.1+etch3.dsc to pool/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch3.dsc vlc_0.8.6-svn20061012.debian-5.1+etch3_i386.deb to pool/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch3_i386.deb wxvlc_0.8.6-svn20061012.debian-5.1+etch3_all.deb to pool/main/v/vlc/wxvlc_0.8.6-svn20061012.debian-5.1+etch3_all.deb
