Ok, I have updated the CVE tracker with the information on CVE-2012-0904 and CVE-2012-2396. I agree with Bryce on adding the bug references to the changelog. Once that is done, please resubscribe ubuntu-security- sponsors and we'll build this in ubuntu-security-proposed (and if ubuntu-sru approves, copy to precise-proposed).
** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-0904 ** Changed in: vlc (Ubuntu Precise) Status: Triaged => In Progress ** Changed in: vlc (Ubuntu Precise) Assignee: (unassigned) => Benjamin Drung (bdrung) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1025713 Title: SRU request for VLC 2.0.2/2.0.3 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/1025713/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
