On 2012/07/06 06:51, Stuart Henderson wrote: > CVSROOT: /cvs > Module name: ports > Changes by: [email protected] 2012/07/06 06:51:11 > > Modified files: > x11/vlc : Makefile distinfo > x11/vlc/patches: patch-configure_ac patch-share_Makefile_am > x11/vlc/pkg : PLIST-main > > Log message: > update to VLC 2.0.2, from Brad. >
Turns out this had security-related fixes: - a heap-based buffer overflow in VLC's Ogg demuxer, - a divide-by-zero error and application crash with a specially crafted MP4 file.
