-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Fri, 8 Feb 2008 20:32:41 +0100 Source: mplayer Binary: mplayer-doc mplayer Architecture: source i386 all Version: 1.0~rc1-12etch2 Distribution: stable-security Urgency: high Maintainer: A Mennucc1 <mennucc1@debian.org> Changed-By: A Mennucc1 <mennucc1@debian.org> Description: mplayer - The Movie Player mplayer-doc - documentation for MPlayer Closes: 464060 464532 464533 Changes: mplayer (1.0~rc1-12etch2) stable-security; urgency=high . * fix SVN25823 for CVE-2008-0630, buffer overflow via crafted url , thanks Niko Golde (closes: #464532) * fix SVN25824 for CVE-2008-0629, buffer overflow via crafted cddb title thanks Niko Golde (closes: #464533) * fix for CVE-2008-0485 Array index error in libmpdemux/demux_mov.c a.k.a. CORE-2007-1218: MPlayer 1.0rc2 buffer overflow vulnerability thanks Stefan Fritsch * fix for CVE-2008-0486 Array index vulnerability in libmpdemux/demux_audio.c a.k.a. CORE-2008-0122: MPlayer arbitrary pointer dereference thanks Stefan Fritsch (closes: #464060) Files: e247c07b25f52ae90c66d1147ed2dad3 1265 graphics optional mplayer_1.0~rc1-12etch2.dsc 4fbe0a18dad58eb0fde6388bfa0fd6fe 82320 graphics optional mplayer_1.0~rc1-12etch2.diff.gz dcae457fc598d095481ae958b4b2be33 2042982 graphics optional mplayer-doc_1.0~rc1-12etch2_all.deb fc9d62d80284dcb7501d4aa46d90705f 4556720 graphics optional mplayer_1.0~rc1-12etch2_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHrNDw9B/tjjP8QKQRAnaQAJ9CFXIMOOTzZm0l+Vze1HpOrRBVqACdG20v UvBP/cfX6B7uk/aPAJA1Oko= =k6y2 -----END PGP SIGNATURE----- Accepted: mplayer-doc_1.0~rc1-12etch2_all.deb to pool/main/m/mplayer/mplayer-doc_1.0~rc1-12etch2_all.deb mplayer_1.0~rc1-12etch2.diff.gz to pool/main/m/mplayer/mplayer_1.0~rc1-12etch2.diff.gz mplayer_1.0~rc1-12etch2.dsc to pool/main/m/mplayer/mplayer_1.0~rc1-12etch2.dsc mplayer_1.0~rc1-12etch2_i386.deb to pool/main/m/mplayer/mplayer_1.0~rc1-12etch2_i386.deb
