[vlc-commits] Update NEWS for AVI issue
Jean-Baptiste Kempf
git at videolan.org
Tue Nov 21 19:34:04 CET 2017
vlc/vlc-2.2 | branch: master | Jean-Baptiste Kempf <jb at videolan.org> | Tue Nov 21 19:30:01 2017 +0100| [64bb091a4646deca99832e2b8f341a5931b2a358] | committer: Jean-Baptiste Kempf
Update NEWS for AVI issue
> http://git.videolan.org/gitweb.cgi/vlc/vlc-2.2.git/?a=commit;h=64bb091a4646deca99832e2b8f341a5931b2a358
---
NEWS | 17 ++++++++++++++---
1 file changed, 14 insertions(+), 3 deletions(-)
diff --git a/NEWS b/NEWS
index 3060a52eae..d9b31b4e53 100644
--- a/NEWS
+++ b/NEWS
@@ -1,13 +1,24 @@
+Changes between 2.2.7 and 2.2.8:
+--------------------------------
+
+Demuxers:
+ * Fix AVI invalid pointer dereferences
+
+Translations updates
+
+
Changes between 2.2.6 and 2.2.7:
--------------------------------
Decoders:
* Fix flac heap write overflow on format change
* Fix crash in libavcodec module (heap write out-of band) (CVE-2017-10699)
- * Fix AVI read/write overflow
* Fix infinite loop in sami subtitle
* Fix AAC 7.1 channels detection
+
+Demuxers:
* Fix potential crash in ASX parser
+ * Fix AVI read/write overflow
Mac OS X:
* Fix compatibility with macOS High Sierra
@@ -44,8 +55,8 @@ Translations updates
Misc:
* Update for Soundcloud, liveleak and Youtube scripts
- * Fix potential out-of-band dereference in flac decoder
- * Fix potential out-of-band reads in mpeg packetizers
+ * Fix potential out-of-band dereference in flac decoder (CVE-2017-9300)
+ * Fix potential out-of-band reads in mpeg packetizers (CVE-2017-9301)
* Fix infinite loop in subtitles demuxer
* Fix incorrect memory free in ogg demuxer
* Fix potential out-of-band reads in subtitle decoders and demuxers
More information about the vlc-commits
mailing list