[vlc-devel] [PACKAGERS] libmodplug is teh suxxor
Jean-Baptiste Kempf
jb at videolan.org
Wed May 18 20:14:25 CEST 2011
On Wed, May 18, 2011 at 12:06:40PM -0600, Roger Pack wrote :
> > As foretold by Nico Golde a month ago (
> > http://mailman.videolan.org/pipermail/vlc-devel/2011-April/079653.html ),
> > another security bug has been found in libmodplug:
> > http://www.exploit-db.com/exploits/17222/
> > Upstream has yet to provide a fix for this. And if I trust other code
> > reviewer, this may only be the beginning of a cat & mouse game.
>
> I guess this is the same as this that I ran into?
> http://www.h-online.com/open/news/item/VLC-Media-Player-vulnerable-to-buffer-overflow-exploits-1237404.html
Yes.
Best Regards,
--
Jean-Baptiste Kempf
http://www.jbkempf.com/ - +33 672 704 734
Sent from my Electronic Device
More information about the vlc-devel
mailing list