Your name have been approved
Attention; Your name have been approved and you are invited to take advantage of our instant pay loans. Our loans are ranging from a minimum $5,000.00 USD and maximum of $100,000,000.00 USD, We give out both business and personal loans with long and short term duration of your choice. Our loan programmer is fast and reliable, apply today and get instant field back. Our loans are well insured, 100% Guaranteed and Clients are assured maximum security. For further inquiry contact us . Best Regards Mr Williams Henry MD/CEO Email ;willainshe...@consultant.com ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#775866: vlc: multiple vulnerabilities
On Mon, Jan 26, 2015 at 05:33:30PM +0100, Sebastian Ramacher wrote: > On 2015-01-26 13:49:26, Moritz Mühlenhoff wrote: > > On Tue, Jan 20, 2015 at 09:47:26PM +0100, Yves-Alexis Perez wrote: > > > * The potential invalid writes in modules/services_discovery/sap.c and > > > modules/access/ftp.c were not fixed as I did not provide a > > > trigger. Note, that the code looks very similar to the confirmed bug > > > in rtp_packetize_xiph_config, and so I leave it to you to decide > > > whether you want to patch this. > > > > These have been assigned CVE-2015-1202 and CVE-2015-1203, could you contact > > upstream for the status of an upstream fix? > > Just because they look similar, does not make them a vulnerability. The > format string for ftp_SendCommand is not attacker controlled. The reporter > still has not answered questions about how the invalid write in > modules/access/ftp.c could be triggered [1]. Similarly, the issue in > modules/services_discovery/sap.c lacks a trigger. The rather disturbing > thread can be found at [2]. > > [1] https://mailman.videolan.org/pipermail/vlc-devel/2014-December/100674.html > [2] https://mailman.videolan.org/pipermail/vlc-devel/2014-December/100675.html Given upstream's response we'll mark these as non-issues in the Debian security tracker, then. I'm adding MITRE to CC; CVE-2015-1202 and CVE-2015-1203 are disputed by upstream, please consider to mark them as rejected. Cheers, Moritz ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#775866: vlc: multiple vulnerabilities
On 2015-01-26 13:49:26, Moritz Mühlenhoff wrote: > On Tue, Jan 20, 2015 at 09:47:26PM +0100, Yves-Alexis Perez wrote: > > * The potential invalid writes in modules/services_discovery/sap.c and > > modules/access/ftp.c were not fixed as I did not provide a > > trigger. Note, that the code looks very similar to the confirmed bug > > in rtp_packetize_xiph_config, and so I leave it to you to decide > > whether you want to patch this. > > These have been assigned CVE-2015-1202 and CVE-2015-1203, could you contact > upstream for the status of an upstream fix? Just because they look similar, does not make them a vulnerability. The format string for ftp_SendCommand is not attacker controlled. The reporter still has not answered questions about how the invalid write in modules/access/ftp.c could be triggered [1]. Similarly, the issue in modules/services_discovery/sap.c lacks a trigger. The rather disturbing thread can be found at [2]. Cheers [1] https://mailman.videolan.org/pipermail/vlc-devel/2014-December/100674.html [2] https://mailman.videolan.org/pipermail/vlc-devel/2014-December/100675.html -- Sebastian Ramacher signature.asc Description: Digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#776298: transcode: Uses avcodec_encode_video no longer present in current libavcodec56
Package: transcode Version: 3:1.1.7-9+b4 Severity: normal Dear Maintainer, I was trying to rip a DVD in k3b. This resulted in an error and the log contained /usr/bin/transcode: symbol lookup error: /usr/lib/transcode/export_ffmpeg.so: undefined symbol: avcodec_encode_video Judging by the docs at https://libav.org/doxygen/master/group__lavc__encoding.html avcodec_encode_video is no longer part of the API. Instead, there's a new call avcodec_encode_video2. Cheers, Michael -- System Information: Debian Release: 8.0 APT prefers unstable APT policy: (990, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/8 CPU cores) Locale: LANG=POSIX, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages transcode depends on: ii gawk 1:4.1.1+dfsg-1 ii konsole [x-terminal-emulator] 4:4.14.2-1 ii liba52-0.7.4 0.7.4-17 ii libasound2 1.0.28-1 ii libavcodec-extra-566:11.2-1 ii libavformat56 6:11.2-1 ii libavresample2 6:11.2-1 ii libavutil546:11.2-1 ii libc6 2.19-13 ii libdv4 1.0.0-6 ii libdvdread45.0.0-1 ii libfreetype6 2.5.2-2 ii libgomp1 4.9.2-10 ii libice62:1.0.9-1+b1 ii libjpeg62-turbo1:1.3.1-11 ii liblzo2-2 2.08-1.2 ii libmagickcore-6.q16-2 8:6.8.9.9-5 ii libmagickwand-6.q16-2 8:6.8.9.9-5 ii libmjpegutils-2.1-01:2.1.0+debian-3 ii libmp3lame03.99.5+repack1-5 ii libmpeg2-4 0.5.1-6 ii libogg01.3.2-1 ii libpostproc52 6:0.git20120821-4 ii libquicktime2 2:1.2.4-7+b1 ii libsdl1.2debian1.2.15-10+b1 ii libsm6 2:1.2.2-1+b1 ii libtheora0 1.1.1+dfsg.1-6 ii libvorbis0a1.3.4-2 ii libvorbisfile3 1.3.4-2 ii libx11-6 2:1.6.2-3 ii libxaw72:1.0.12-2+b1 ii libxext6 2:1.3.3-1 ii libxml22.9.2+dfsg1-1+b1 ii libxpm41:3.5.11-1+b1 ii libxt6 1:1.1.4-1+b1 ii libxv1 2:1.0.10-1+b1 ii mawk 1.3.3-17 ii xterm [x-terminal-emulator]312-1 ii zlib1g 1:1.2.8.dfsg-2+b1 Versions of packages transcode recommends: ii sox14.4.1-5 ii transcode-doc 3:1.1.7-9 ii twolame0.3.13-1.1 Versions of packages transcode suggests: pn mjpegtools pn xvid4conf -- no debconf information ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#775866: vlc: multiple vulnerabilities
On Tue, Jan 20, 2015 at 09:47:26PM +0100, Yves-Alexis Perez wrote: > * The potential invalid writes in modules/services_discovery/sap.c and > modules/access/ftp.c were not fixed as I did not provide a > trigger. Note, that the code looks very similar to the confirmed bug > in rtp_packetize_xiph_config, and so I leave it to you to decide > whether you want to patch this. These have been assigned CVE-2015-1202 and CVE-2015-1203, could you contact upstream for the status of an upstream fix? Cheers, Moritz ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#776301: New upstream release: 0.5.2
Source: gpac Severity: wishlist Upstream has released a new version: https://github.com/gpac/gpac/tree/v0.5.2 Cheers. -- System Information: Debian Release: jessie/sid APT prefers utopic-updates APT policy: (500, 'utopic-updates'), (500, 'utopic-security'), (500, 'utopic'), (100, 'utopic-backports') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-28-generic (SMP w/20 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Greetings To You,
Greetings To You, Please forgive my intrusion into your privacy,my name is Mrs Noor Hidayah a Malaysia citizen but lives in capital city of Burkina-Faso, I am a sick widow have decided to donate some of my wealth to areliable individual that will use this money, $2.7 Million Dollars to help the orphans and less privileged ones in the society for the work of humanity as i don't have any child to inherit the fund when am no more alive, You will take 20% of this fund for your effort and share the rest to orphans, less privileged ones and the widows, if you are willing to accept my offer and use this fund exactly as i said kindly reply me with your data's let me know you more and instruct you on what next to do now that i can struggle to write. My regards Mrs Noor Hidayah___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
