VideoLAN has released 1.0.6 to address several vulnerabilities they discovered while working towards the 1.1.0 release. These vulnerabilities could potentially allow for a specially crafted file to execute code. Fix: This shar file contains two patches. The first is the update patch for vlc, the second is the vuln.xml entry, sans this PR number. Patch attached with submission follows:
Responsible Changed From-To: freebsd-ports-bugs->sylvio I'll take it.
sylvio 2010-05-02 00:48:49 UTC FreeBSD ports repository Modified files: multimedia/vlc Makefile distinfo Log: - Update to 1.0.6 PR: ports/146099 Submitted by: Joseph S. Atkinson <jsa@wickedmachine.net> (maintainer) Revision Changes Path 1.220 +1 -2 ports/multimedia/vlc/Makefile 1.36 +3 -3 ports/multimedia/vlc/distinfo _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
sylvio 2010-05-02 00:52:40 UTC FreeBSD ports repository Modified files: security/vuxml vuln.xml Log: - VideoLAN has released 1.0.6 to address serveral vulnerabilities they discoverd while working towards the 1.1.0 release. These vulnerabilities could potentially allow for a specially crafted file to execute code. PR: ports/146099 Submitted by: Joseph S. Atkinson <jsa@wickedmachine.net> (maintainer) Revision Changes Path 1.2151 +28 -1 ports/security/vuxml/vuln.xml _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
State Changed From-To: open->closed Committed. Thanks!