Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=46614e7b0c23f3d72789d050ccad75649ddba828
commit 46614e7b0c23f3d72789d050ccad75649ddba828 Author: Miklos Vajna <[EMAIL PROTECTED]> Date: Sun Mar 9 00:11:30 2008 +0100 FSA375-vlc diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml index 85cc8a3..2d1ec98 100644 --- a/frugalware/xml/security.xml +++ b/frugalware/xml/security.xml @@ -27,6 +27,19 @@ <fsas> <fsa> + <id>375</id> + <date>2008-03-09</date> + <author>vmiklos</author> + <package>vlc</package> + <vulnerable>0.8.6-8sayshell1</vulnerable> + <unaffected>0.8.6-8sayshell2</unaffected> + <bts>http://bugs.frugalware.org/task/2819</bts> + <cve>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0984</cve> + <desc>A vulnerability has been reported in VLC Media Player, which can potentially be exploited by malicious people to compromise a user's system. + The vulnerability is caused due to a boundary error within the MP4 demuxer (modules/demux/mp4/mp4.c). This can be exploited to overwrite an almost arbitrary memory address via a specially crafted MPEG-4 file. + Successful exploitation may allow execution of arbitrary code.</desc> + </fsa> + <fsa> <id>374</id> <date>2008-03-07</date> <author>vmiklos</author> _______________________________________________ Frugalware-git mailing list [email protected] http://frugalware.org/mailman/listinfo/frugalware-git
