Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#6574 - New security bug in xine-lib-1.1.4
Attached to Project:
Arch Linux
Opened by Hussam Al-Tayeb (hussam) - Sunday, 11 March 2007, 12:22 GMT
Last edited by Roman Kyrylych (Romashka) - Monday, 12 March 2007, 00:44 GMT
Opened by Hussam Al-Tayeb (hussam) - Sunday, 11 March 2007, 12:22 GMT
Last edited by Roman Kyrylych (Romashka) - Monday, 12 March 2007, 00:44 GMT
|
DetailsAs described here http://sourceforge.net/tracker/index.php?func=detail&aid=1676925&group_id=9655&atid=109655
and http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1246 The following patch was ported from the mplayer tree to apply to xine-lib 
DMO_VideoDecoder.diff
(0.4 KiB)
|
This task depends upon
Comment by Tobias Powalowski (tpowa) -
Friday, 16 March 2007, 17:36 GMT
fixed in testing