[vlc-devel] commit: Mention the CVE (presumed fixed for 0.8.6e) ( Rafaël Carré )
git version control
git at videolan.org
Sun Mar 30 09:34:46 CEST 2008
vlc | branch: 0.8.6-bugfix | Rafaël Carré <funman at videolan.org> | Sun Mar 30 09:34:00 2008 +0200| [b109828292559f124999893d0059848a8f01fbf8]
Mention the CVE (presumed fixed for 0.8.6e)
> http://git.videolan.org/gitweb.cgi/vlc.git/?a=commit;h=b109828292559f124999893d0059848a8f01fbf8
---
NEWS | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diff --git a/NEWS b/NEWS
index e486d7c..1e79bdd 100644
--- a/NEWS
+++ b/NEWS
@@ -4,7 +4,7 @@ Changes between 0.8.6e and 0.8.6f:
----------------------------------
Security updates:
- * Fixed subtitle buffer overflow
+ * Really fixed subtitle buffer overflow (CVE-2007-6681)
* Fixed Real RTSP code execution problem (CVE-2008-0073)
* Fixed cinepak integer overflow
More information about the vlc-devel
mailing list