liblivemedia 2018.02.28-1 MIGRATED to testing

[Debian testing watch]

FYI: The status of the liblivemedia source package
in Debian's testing distribution has changed.

  Previous version: 2018.02.18-1
  Current version:  2018.02.28-1

-- 
This email is automatically generated once a day.  As the installation of
new packages into testing happens multiple times a day you will receive
later changes on the next day.
See https://release.debian.org/testing-watch/ for more information.

___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

glyr 1.0.10-1 MIGRATED to testing

[Debian testing watch]

FYI: The status of the glyr source package
in Debian's testing distribution has changed.

  Previous version: 1.0.9-1
  Current version:  1.0.10-1

-- 
This email is automatically generated once a day.  As the installation of
new packages into testing happens multiple times a day you will receive
later changes on the next day.
See https://release.debian.org/testing-watch/ for more information.

___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

npapi-vlc is marked for autoremoval from testing

[Debian testing autoremoval watch]

npapi-vlc 2.0.6-4 is marked for autoremoval from testing on 2018-03-11

It is affected by these RC bugs:
890024: npapi-vlc: upcoming Firefox ESR dropping support for NPAPI


___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#892582: mixxx: Build-Depend on scour

[Jeremy Bicha]

Source: mixxx
Version: 2.0.0~dfsg-8

Please Build-Depend on scour instead of python-scour and python3-scour.

Thanks,
Jeremy Bicha

___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Accepted mpg123 1.25.10-1 (source) into unstable

[Sebastian Ramacher]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Sat, 10 Mar 2018 11:02:34 +0100
Source: mpg123
Binary: mpg123 libmpg123-0 libout123-0 libmpg123-dev
Architecture: source
Version: 1.25.10-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Multimedia Maintainers 

Changed-By: Sebastian Ramacher 
Description:
 libmpg123-0 - MPEG layer 1/2/3 audio decoder (shared library)
 libmpg123-dev - MPEG layer 1/2/3 audio decoder (development files)
 libout123-0 - MPEG layer 1/2/3 audio decoder (libout123 shared library)
 mpg123 - MPEG layer 1/2/3 audio player
Changes:
 mpg123 (1.25.10-1) unstable; urgency=medium
 .
   * Team upload.
 .
   [ Sebastian Ramacher ]
   * debian/control: Drop obsolete Pre-Depends.
   * New upstream release.
 .
   [ Ondřej Nový ]
   * d/copyright: Use https protocol in Format field
   * d/control: Set Vcs-* to salsa.debian.org
Checksums-Sha1:
 6177b54d44ca8adfd4cd8eebb6eafb847d9642f0 2523 mpg123_1.25.10-1.dsc
 604784ddbcfe282bffdc595d1d45c677c7cf381f 921219 mpg123_1.25.10.orig.tar.bz2
 a407a252914b54f18d3d713df759ad7cfcebcac9 847 mpg123_1.25.10.orig.tar.bz2.asc
 d83503129d95a27e7b65c460cc8da24c7d077699 23548 mpg123_1.25.10-1.debian.tar.xz
Checksums-Sha256:
 48a7cc9cb104758592d6505204eb86a0109268f33270ce9dcaa4a05d9957b4f8 2523 
mpg123_1.25.10-1.dsc
 6c1337aee2e4bf993299851c70b7db11faec785303cfca3a5c3eb5f329ba7023 921219 
mpg123_1.25.10.orig.tar.bz2
 4ea1ac82c47b21f3fb353b8f11040abba8529b0e6f4a50a87e18f68b87b71530 847 
mpg123_1.25.10.orig.tar.bz2.asc
 32c68939ff1635124cb5b0c1708c8c420475726e8cb8e5822b8fec97d5266bbb 23548 
mpg123_1.25.10-1.debian.tar.xz
Files:
 a24080391251816de4cfc6e744abf3e5 2523 sound optional mpg123_1.25.10-1.dsc
 ea32caa61d41d8be797f0b04a1b43ad9 921219 sound optional 
mpg123_1.25.10.orig.tar.bz2
 e1d8bb58c10bde29253de1d6dc20fbf5 847 sound optional 
mpg123_1.25.10.orig.tar.bz2.asc
 453e90846aa5b0fd2b58a083b161fe30 23548 sound optional 
mpg123_1.25.10-1.debian.tar.xz

-BEGIN PGP SIGNATURE-

iQIzBAEBCAAdFiEE94y6B4F7sUmhHTOQafL8UW6nGZMFAlqjrYwACgkQafL8UW6n
GZP/zw//ciIvlRvY2fU7F7RHnlWpDhw0dCcCdH/nRbRZR+JGJoDzBBz+RBQHPjWi
icHOpVjbBLJLfG7icFZ3SmiLtuDUIN/85f5ollVIChM3Ot6Qkj4d+1inCIZkVDv5
qfs2tUmnO8EU2f0yixHc6mQUZ+1xziBuN+7k1FvkLgEt2twrXtvFRl4roKJkXOX7
/zF6MNQgRIxOJj8NHRV5VPvKkf7TT+rXvhLbe1OhhFISeWzwoJMGMZztJeA16SeZ
9jfnxijQUP8Crr7uxhK8xb60O/H+IOBg8BTU7sWnooGNBYLyaFlm4SqI+DeUQOBm
j2NKjPSU6pVnEv7Sn3eEo3L9Igd3zIrW8v+bMii4TB32g1gftVMmaGw2T6YR/BJc
xEPYNVcKwAK0p/3aWs3RKk7MM1c/9k+qRaHANelFtf22atiUw9UXDuXx0SJgQH1N
zuIA3WokIrHmPjJ8KLpM6VvcZYV7F5STFtrY5gd5qgFZaS8P9blFpkh7+qVE0BB8
UjKMl+t059cVrtV25W3r3dunZ3+010uCnGSEa5xrnaHnqPHntZDcuuEDl3uEBHrh
XAitXji7WFN/6vxSUlcqv/dxfRDsmaKu8UzgJQTfLuypmx20kMkHG3xp4fIHTCAd
gtBLp/LAwFKegcqW3FD4JiOTubYSXwMCan9c6IwY05XZeSJVZsM=
=g5cW
-END PGP SIGNATURE-


___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

mpg123_1.25.10-1_source.changes ACCEPTED into unstable

[Debian FTP Masters]

Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Sat, 10 Mar 2018 11:02:34 +0100
Source: mpg123
Binary: mpg123 libmpg123-0 libout123-0 libmpg123-dev
Architecture: source
Version: 1.25.10-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Multimedia Maintainers 

Changed-By: Sebastian Ramacher 
Description:
 libmpg123-0 - MPEG layer 1/2/3 audio decoder (shared library)
 libmpg123-dev - MPEG layer 1/2/3 audio decoder (development files)
 libout123-0 - MPEG layer 1/2/3 audio decoder (libout123 shared library)
 mpg123 - MPEG layer 1/2/3 audio player
Changes:
 mpg123 (1.25.10-1) unstable; urgency=medium
 .
   * Team upload.
 .
   [ Sebastian Ramacher ]
   * debian/control: Drop obsolete Pre-Depends.
   * New upstream release.
 .
   [ Ondřej Nový ]
   * d/copyright: Use https protocol in Format field
   * d/control: Set Vcs-* to salsa.debian.org
Checksums-Sha1:
 6177b54d44ca8adfd4cd8eebb6eafb847d9642f0 2523 mpg123_1.25.10-1.dsc
 604784ddbcfe282bffdc595d1d45c677c7cf381f 921219 mpg123_1.25.10.orig.tar.bz2
 a407a252914b54f18d3d713df759ad7cfcebcac9 847 mpg123_1.25.10.orig.tar.bz2.asc
 d83503129d95a27e7b65c460cc8da24c7d077699 23548 mpg123_1.25.10-1.debian.tar.xz
Checksums-Sha256:
 48a7cc9cb104758592d6505204eb86a0109268f33270ce9dcaa4a05d9957b4f8 2523 
mpg123_1.25.10-1.dsc
 6c1337aee2e4bf993299851c70b7db11faec785303cfca3a5c3eb5f329ba7023 921219 
mpg123_1.25.10.orig.tar.bz2
 4ea1ac82c47b21f3fb353b8f11040abba8529b0e6f4a50a87e18f68b87b71530 847 
mpg123_1.25.10.orig.tar.bz2.asc
 32c68939ff1635124cb5b0c1708c8c420475726e8cb8e5822b8fec97d5266bbb 23548 
mpg123_1.25.10-1.debian.tar.xz
Files:
 a24080391251816de4cfc6e744abf3e5 2523 sound optional mpg123_1.25.10-1.dsc
 ea32caa61d41d8be797f0b04a1b43ad9 921219 sound optional 
mpg123_1.25.10.orig.tar.bz2
 e1d8bb58c10bde29253de1d6dc20fbf5 847 sound optional 
mpg123_1.25.10.orig.tar.bz2.asc
 453e90846aa5b0fd2b58a083b161fe30 23548 sound optional 
mpg123_1.25.10-1.debian.tar.xz

-BEGIN PGP SIGNATURE-
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=g5cW
-END PGP SIGNATURE-


Thank you for your contribution to Debian.

___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Processing of mpg123_1.25.10-1_source.changes

[Debian FTP Masters]

mpg123_1.25.10-1_source.changes uploaded successfully to localhost
along with the files:
  mpg123_1.25.10-1.dsc
  mpg123_1.25.10.orig.tar.bz2
  mpg123_1.25.10.orig.tar.bz2.asc
  mpg123_1.25.10-1.debian.tar.xz

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Processed: found 892526 in 0.5.0+svn5324~dfsg1-1

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> found 892526 0.5.0+svn5324~dfsg1-1
Bug #892526 [src:gpac] gpac: CVE-2018-7752: Stack buffer overflow in 
av_parsers.c
Marked as found in versions gpac/0.5.0+svn5324~dfsg1-1.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
892526: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892526
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers

Bug#892526: gpac: CVE-2018-7752: Stack buffer overflow in av_parsers.c

[Salvatore Bonaccorso]

Source: gpac
Version: 0.5.2-426-gc5ad4e4+dfsg5-3
Severity: important
Tags: patch security upstream
Forwarded: https://github.com/gpac/gpac/issues/997

Hi,

the following vulnerability was published for gpac.

CVE-2018-7752[0]:
| GPAC through 0.7.1 has a Buffer Overflow in the gf_media_avc_read_sps
| function in media_tools/av_parsers.c, a different vulnerability than
| CVE-2018-1000100.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-7752
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7752
[1] https://github.com/gpac/gpac/issues/997
[2] https://github.com/gpac/gpac/commit/90dc7f853d31b0a4e9441cba97feccf36d8b69a4

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers