Your message dated Mon, 09 Apr 2007 17:58:03 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#403398: fixed in ffmpeg 0.cvs20070307-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: mplayer
Version: 1.0~rc1-8
Severity: grave
Tags: security
Justification: user security hole
mplayer segfaults on a file I have (probably badly) downloaded from the
Internet. Note that other video applications in Debian (vlc, kaffeine)
do not segfault. It is very likely a security problem.
The file is available here: http://temp.aurel32.net/mplayer.mpeg
-- System Information:
Debian Release: 4.0
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-3-xen-amd64
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Versions of packages mplayer depends on:
ii debconf [debconf-2 1.5.10 Debian configuration management sy
ii libasound2 1.0.13-1 ALSA library
ii libatk1.0-0 1.12.3-1 The ATK accessibility toolkit
ii libaudiofile0 0.2.6-6 Open-source version of SGI's audio
ii libc6 2.3.6.ds1-9 GNU C Library: Shared libraries
ii libcaca0 0.99.beta11.debian-2 colour ASCII art library
ii libcairo2 1.2.4-4 The Cairo 2D vector graphics libra
ii libcdparanoia0 3.10+debian~pre0-4 audio extraction tool for sampling
ii libconfhelper-perl 0.12.5 Library for editing configuration
ii libcucul0 0.99.beta11.debian-2 low-level Unicode character drawin
ii libdirectfb-0.9-25 0.9.25.1-5 direct frame buffer graphics - sha
ii libdv4 1.0.0-1 software library for DV format dig
ii libdvdread3 0.9.7-2 library for reading DVDs
ii libesd0 0.2.36-3 Enlightened Sound Daemon - Shared
ii libfontconfig1 2.4.2-1 generic font configuration library
ii libfreetype6 2.2.1-5 FreeType 2 font engine, shared lib
ii libglib2.0-0 2.12.4-2 The GLib library of C routines
ii libgtk2.0-0 2.8.20-3 The GTK+ graphical user interface
ii libjpeg62 6b-13 The Independent JPEG Group's JPEG
ii liblircclient0 0.8.0-9 LIRC client library
ii liblzo1 1.08-3 data compression library (old vers
ii libmad0 0.15.1b-2.1 MPEG audio decoder library
ii libncurses5 5.5-5 Shared libraries for terminal hand
ii libogg0 1.1.3-2 Ogg Bitstream Library
ii libpango1.0-0 1.14.8-3 Layout and rendering of internatio
ii libpng12-0 1.2.15~beta5-0 PNG library - runtime
ii libsdl1.2debian 1.2.11-7 Simple DirectMedia Layer
ii libsmbclient 3.0.23d-2 shared library that allows applica
ii libspeex1 1.1.12-2 The Speex Speech Codec
ii libtheora0 0.0.0.alpha7.dfsg-1.1 The Theora Video Compression Codec
ii libungif4g 4.1.4-4 shared library for GIF images
ii libx11-6 2:1.0.3-4 X11 client-side library
ii libxcursor1 1.1.7-4 X cursor management library
ii libxext6 1:1.0.1-2 X11 miscellaneous extension librar
ii libxfixes3 1:4.0.1-5 X11 miscellaneous 'fixes' extensio
ii libxi6 1:1.0.1-4 X11 Input extension library
ii libxinerama1 1:1.0.1-4.1 X11 Xinerama extension library
ii libxrandr2 2:1.1.0.2-5 X11 RandR extension library
ii libxrender1 1:0.9.1-3 X Rendering Extension client libra
ii libxv1 1:1.0.2-1 X11 Video extension library
ii libxvmc1 1:1.0.2-2 X11 Video extension library
ii libxxf86dga1 2:1.0.1-2 X11 Direct Graphics Access extensi
ii libxxf86vm1 1:1.0.1-2 X11 XFree86 video mode extension l
ii mplayer-skin-blue 1.6-1 blue skin for mplayer
ii zlib1g 1:1.2.3-13 compression library - runtime
mplayer recommends no packages.
-- debconf information:
mplayer/voutput: autodetect
mplayer/cfgnote:
mplayer/replace-existing-files-bail:
mplayer/install_codecs:
mplayer/rtc: false
mplayer/replace-existing-files: false
mplayer/ttfont: Sans
mplayer/no-ttfont:
mplayer/dvd_device: /dev/cdrom
--- End Message ---
--- Begin Message ---
Source: ffmpeg
Source-Version: 0.cvs20070307-1
We believe that the bug you reported is fixed in the latest version of
ffmpeg, which is due to be installed in the Debian FTP archive:
ffmpeg_0.cvs20070307-1.diff.gz
to pool/main/f/ffmpeg/ffmpeg_0.cvs20070307-1.diff.gz
ffmpeg_0.cvs20070307-1.dsc
to pool/main/f/ffmpeg/ffmpeg_0.cvs20070307-1.dsc
ffmpeg_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/ffmpeg_0.cvs20070307-1_i386.deb
ffmpeg_0.cvs20070307.orig.tar.gz
to pool/main/f/ffmpeg/ffmpeg_0.cvs20070307.orig.tar.gz
libavcodec-dev_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/libavcodec-dev_0.cvs20070307-1_i386.deb
libavcodec1d_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/libavcodec1d_0.cvs20070307-1_i386.deb
libavformat-dev_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/libavformat-dev_0.cvs20070307-1_i386.deb
libavformat1d_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/libavformat1d_0.cvs20070307-1_i386.deb
libavutil-dev_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/libavutil-dev_0.cvs20070307-1_i386.deb
libavutil1d_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/libavutil1d_0.cvs20070307-1_i386.deb
libpostproc-dev_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/libpostproc-dev_0.cvs20070307-1_i386.deb
libpostproc1d_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/libpostproc1d_0.cvs20070307-1_i386.deb
libswscale-dev_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/libswscale-dev_0.cvs20070307-1_i386.deb
libswscale1d_0.cvs20070307-1_i386.deb
to pool/main/f/ffmpeg/libswscale1d_0.cvs20070307-1_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Sam Hocevar (Debian packages) <[EMAIL PROTECTED]> (supplier of updated ffmpeg
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 9 Mar 2007 15:13:16 +0100
Source: ffmpeg
Binary: libavformat-dev ffmpeg libswscale1d libpostproc-dev libavcodec1d
libpostproc1d libavutil-dev libavcodec-dev libswscale-dev libavutil1d
libavformat1d
Architecture: source i386
Version: 0.cvs20070307-1
Distribution: experimental
Urgency: low
Maintainer: Sam Hocevar (Debian packages) <[EMAIL PROTECTED]>
Changed-By: Sam Hocevar (Debian packages) <[EMAIL PROTECTED]>
Description:
ffmpeg - multimedia player, server and encoder
libavcodec-dev - development files for libavcodec
libavcodec1d - ffmpeg codec library
libavformat-dev - development files for libavformat
libavformat1d - ffmpeg file format library
libavutil-dev - development files for libavutil
libavutil1d - ffmpeg utility library
libpostproc-dev - development files for libpostproc
libpostproc1d - ffmpeg video postprocessing library
libswscale-dev - development files for libswscale
libswscale1d - ffmpeg video scaling library
Closes: 365006 373986 385079 396282 398442 399141 403330 403398 404176 404758
404788 407003
Changes:
ffmpeg (0.cvs20070307-1) experimental; urgency=low
.
[ Sam Hocevar ]
.
* New upstream snapshot (Closes: #403330, #404788).
* This snapshot fixes numerous file parsing crashes (Closes: #404176,
Closes: #407003, #396282, #365006, #403398).
.
* debian/patches/010_proper_rpath.diff:
+ New patch. Link objects with the libraries that we generate, not the
ones installed on the system.
.
* debian/patches/010_shared_library_versioning.diff:
+ Strip unneeded prefix from .pc files (Closes: #404758).
.
* debian/patches/011_link_plugins.diff:
+ New patch. Link vhook plugins with the appropriate libraries.
.
* debian/patches/013_strip_unneeded_linker_flags.diff:
+ Remove unneeded -l flags from .pc files (Closes: #373986).
.
* debian/patches/020_mmx_optims.diff:
* debian/patches/020_disable_snow_mmx_in_pic.diff:
+ Sync patches.
.
* debian/patches/020_really_use_liba52.diff:
* debian/patches/050_h264-misc-security-fixes.diff:
* debian/patches/051_asf-misc-security-fixes.diff:
+ Drop patches, applied upstream or no longer relevant.
.
* debian/patches/040_only_use_maltivec_when_needed.diff:
+ Upgraded patch to cover libswscale.
.
* debian/libavcodec-dev.install:
+ Ship lzo.h and random.h.
.
* debian/rules:
+ Fix syntax for a few --enable flags.
+ Only ship ffmpeg_powerpc_performance_evaluation_howto.txt.gz on
powerpc machines (Closes: #385079).
+ Readded --enable-libtheora, it's here again.
+ Activate --enable-swscaler (Closes: #399141, #398442).
.
[ Reinhard Tartler ]
.
* debian/rules:
+ Ignore libswscale.pc and rgb2rgb.h.
.
* debian/libavcodec-dev.install:
+ Ship fifo.h and opt.h.
.
* debian/patches/005_altivec_flags.diff:
* debian/patches/005_m68k_workaround.diff:
* debian/patches/005_runtime_cpudetect.diff:
* debian/patches/006_mips_pthreads.diff:
* debian/patches/020_really_use_liba52.diff:
+ Sync patches.
.
* debian/patches/007_disable_ffmpeg_option.diff:
* debian/patches/030_arm_cpu_detect.diff:
* debian/patches/030_arm_workaround.diff:
+ Drop patches, applied upstream or no longer relevant.
Files:
66402b9777491070fc304542e687ef26 1231 libs optional ffmpeg_0.cvs20070307-1.dsc
2fe579de8a26351cc3b0b0e443acb09f 2593100 libs optional
ffmpeg_0.cvs20070307.orig.tar.gz
3395c3dba3402a0814f91b802efe980e 32897 libs optional
ffmpeg_0.cvs20070307-1.diff.gz
de27fdc3f8e447d12a01a3ffbef42050 189168 graphics optional
ffmpeg_0.cvs20070307-1_i386.deb
d464f3d8142ae5bbe181a6a23a88edef 35886 libs optional
libavutil1d_0.cvs20070307-1_i386.deb
5e2d5cf3f0f970eb71973c7eb902cb9d 1694500 libs optional
libavcodec1d_0.cvs20070307-1_i386.deb
765f699757decf46c2d1ab35bde89f4a 71084 libs optional
libpostproc1d_0.cvs20070307-1_i386.deb
7c36d960e73c527bdb6d5dd1e7440986 283826 libs optional
libavformat1d_0.cvs20070307-1_i386.deb
98bf95d38ad39b58655697ad716e9e1e 98372 libs optional
libswscale1d_0.cvs20070307-1_i386.deb
4350cb4b57d217d924bbe6907c0da132 47944 libdevel optional
libavutil-dev_0.cvs20070307-1_i386.deb
b36aca73fafb91e1a835910066a5ce1a 1745498 libdevel optional
libavcodec-dev_0.cvs20070307-1_i386.deb
0eaf383f2e2003f84664409159f6edc7 71448 libdevel optional
libpostproc-dev_0.cvs20070307-1_i386.deb
257fa86c9fab09ee66ce2cafb6b3d289 333340 libdevel optional
libavformat-dev_0.cvs20070307-1_i386.deb
54f3749833c474e23f99ab90f12e0a0d 112990 libdevel optional
libswscale-dev_0.cvs20070307-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFF8ck+fPP1rylJn2ERAn7CAJ9aNII8MiDTyuCZoN/zBjdZp0Y+nwCfSp+r
MFHcww9hd6FnjEe/3nhFJiI=
=g+3A
-----END PGP SIGNATURE-----
--- End Message ---
