-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Aug 2015 15:45:17 +0200 Source: vlc Binary: libvlc-dev libvlc5 libvlccore-dev libvlccore8 vlc vlc-data vlc-dbg vlc-nox vlc-plugin-fluidsynth vlc-plugin-jack vlc-plugin-notify vlc-plugin-sdl vlc-plugin-svg vlc-plugin-zvbi vlc-plugin-samba vlc-plugin-pulse Architecture: all source Version: 2.2.0~rc2-2+deb8u1 Distribution: jessie-security Urgency: high Maintainer: Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org> Changed-By: Salvatore Bonaccorso <carnil@debian.org> Description: libvlc-dev - development files for libvlc libvlc5 - multimedia player and streamer library libvlccore-dev - development files for libvlccore libvlccore8 - base library for VLC and its modules vlc - multimedia player and streamer vlc-data - Common data for VLC vlc-dbg - debugging symbols for vlc vlc-nox - multimedia player and streamer (without X support) vlc-plugin-fluidsynth - FluidSynth plugin for VLC vlc-plugin-jack - Jack audio plugins for VLC vlc-plugin-notify - LibNotify plugin for VLC vlc-plugin-pulse - transitional dummy package for vlc vlc-plugin-samba - Samba plugin for VLC vlc-plugin-sdl - SDL video and audio output plugin for VLC vlc-plugin-svg - SVG plugin for VLC vlc-plugin-zvbi - VBI teletext plugin for VLC Changes: vlc (2.2.0~rc2-2+deb8u1) jessie-security; urgency=high . * Non-maintainer upload by the Security Team. * Add CVE-2015-5949.patch patch. CVE-2015-5949: Insufficient restrictions on a writable buffer in the 3GP file format parser can be exploited to execute arbitrary code via a specially crafted 3GP file. Checksums-Sha1: 47cebdf065b44bcbdf37eb6b656e5b1f0744dc55 5438 vlc_2.2.0~rc2-2+deb8u1.dsc 4baea7abce4f887b9ebd462a862c2c8731d84ce0 20821112 vlc_2.2.0~rc2.orig.tar.xz 9a1f6a5d39b95d1fa7664d113c4e488a1d5ea5f6 59972 vlc_2.2.0~rc2-2+deb8u1.debian.tar.xz f0a9ce630f428402d0fe083ff217555ba17570eb 5484396 vlc-data_2.2.0~rc2-2+deb8u1_all.deb 2cdc9268f91c6934fc1c7b6f6432c914a5e7821d 924 vlc-plugin-pulse_2.2.0~rc2-2+deb8u1_all.deb Checksums-Sha256: 033269dbc894cc5c782eebb78b2c92b0e32eb41257a6bbb66f6e2d9777fdf18e 5438 vlc_2.2.0~rc2-2+deb8u1.dsc 10ac93456f52e0ca11f7af4ae87179339ca76b767aedf978e87014b2fea7abb5 20821112 vlc_2.2.0~rc2.orig.tar.xz a1970977f049f96adb40a6ab9a7c5dc0e9aa2a582affec348524bc2b0da3fd38 59972 vlc_2.2.0~rc2-2+deb8u1.debian.tar.xz 6ff1b728071f906f3e9ab91ef9bc2b809e0ff69101be010383a177376d60de7e 5484396 vlc-data_2.2.0~rc2-2+deb8u1_all.deb 94f95a66008ac471bc02bdc3b6e15848649bc0f4ebc189351c694e6b736c5f30 924 vlc-plugin-pulse_2.2.0~rc2-2+deb8u1_all.deb Files: c52fe3ca8755cdaa8f18feebf54a93e9 5438 video optional vlc_2.2.0~rc2-2+deb8u1.dsc 2b4d2288605d0b02c22aee4bbcce66ca 20821112 video optional vlc_2.2.0~rc2.orig.tar.xz 1ffc23264059f0f8294affb7e866201d 59972 video optional vlc_2.2.0~rc2-2+deb8u1.debian.tar.xz 8250d324be809dd51c8b38d773cfc99b 5484396 video optional vlc-data_2.2.0~rc2-2+deb8u1_all.deb 37cab3cc1f2bcf40a1ccd2bee3bc2a29 924 video optional vlc-plugin-pulse_2.2.0~rc2-2+deb8u1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJV1JFUAAoJEAVMuPMTQ89EFj4P/0stRvYg4+gBUpo/rBp8VCFO rj2bH0cVpJ2jdhHPcmMuy5OF3Cden3DXMv9yvGi3DRcVQOSrK9fKopgWK5MCJpRu eEgCnab4i6t3b8GP2u+OQzVPzMlI5kqO84f3Z0ta1+h51aHBNzXWupmGqLeU9zCB XfymWKDkRXn4UTCZDhMlD+W9ffM9E5bPdRiD242jqd7bHDT//kHXenUAh3y9I/jZ o+IgHSQ18T1on4IHxdrM+FFX3Pyp7IJMsqObVKHib0mLx5hHDn9tsS7Z3yXvliSI fkHc9C9LkGqkvHtH4sOJs/qAWPeuASuMQi0ycd/LobKfKA/M8lYJMlq20KiTVWG/ omEfiRpfCe9UihTa5wsyyJHTfd8JaF6stwTsNPuB95q/JOBbXcM3S4P6zl9G+jY+ 43rODvhSpoEeYz3N1BKkNov34Mfu48DSC7f8nbfkA9L0sepQ6RT3wbwoXdhviiTD CLYz/TA/EFhpbADSxP2zTHipxzK3ejp2LZUuVLW/YOFyzcoTrh7pacvAS4M/k+fO fe8m024AChb6V9ZAoNiRdOPvrKPREGizFLK4OlFiBJ1Yq8oCJys/FXRzYjJOz2gw FLF7HNP7+g+CF9iUqg1RCYruclwsCNch2wLU8AYumiD2/3Dk45y+U0EQe9aq9fX/ WpEo6QQtr40KizaPt/xB =51sz -----END PGP SIGNATURE-----
