Once again bump vlc-devel. Fix: Patch attached with submission follows:
Responsible Changed From-To: freebsd-ports-bugs->miwi I'll take it.
FreeBSD-gnats-submit@FreeBSD.org wrote: > Thank you very much for your problem report. > It has the internal identification `ports/128656'. > The individual assigned to look at your > report is: freebsd-ports-bugs. > > You can access the state of your problem report at any time > via this link: > > http://www.freebsd.org/cgi/query-pr.cgi?pr=128656 > >> Category: ports >> Responsible: freebsd-ports-bugs >> Synopsis: multimedia/vlc-devel 0.9.5 -> 0.9.6 >> Arrival-Date: Fri Nov 07 01:30:04 UTC 2008 > I have asked miwi to comment out the `.include <bsd.gecko.mk>` line from Makefile. This line is unnecessary and causes issues when someone chooses to use the WITH_VLC_MOZILLA_PLUGIN option (ports/128675).
miwi 2008-11-09 16:06:10 UTC FreeBSD ports repository Modified files: multimedia/vlc-devel Makefile distinfo Log: - Update to 0.9.6 Fix a stack overflow vulnerability while parsing malformed cue files. The vulnerability may be exploited by a (remote) attacker to execute arbitrary code in the context of VLC media player. PR: 128656 Submitted by: "Joseph S. Atkinson" <jsa@wickedmachine.net> (maintainer) Security: http://www.vuxml.org/freebsd/4b09378e-addb-11dd-a578-0030843d3802.html Revision Changes Path 1.209 +1 -2 ports/multimedia/vlc-devel/Makefile 1.54 +3 -3 ports/multimedia/vlc-devel/distinfo _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
State Changed From-To: open->closed Committed. Thanks!