** Changed in: vlc (Debian)
Status: Unknown = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/616510
Title:
Insufficient validation of ID3v2 tags
To manage notifications about
** Changed in: vlc
Status: Fix Committed = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/616510
Title:
Insufficient validation of ID3v2 tags
--
ubuntu-bugs mailing list
Jaunty reached end-of-life on 23 October 2010. The bug is marked as
fixed in later versions of Ubuntu
** Changed in: vlc (Ubuntu Jaunty)
Status: New = Won't Fix
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
This bug was fixed in the package vlc - 1.0.6-1ubuntu1.2
---
vlc (1.0.6-1ubuntu1.2) lucid-security; urgency=low
* SECURITY UPDATE: Insufficient input validation in VLC TagLib plugin
(LP: #616510).
- debian/patches/CVE-2010-2937.patch: fix NULL deferences after dynamic
** Branch linked: lp:ubuntu/lucid-security/vlc
--
Insufficient validation of ID3v2 tags
https://bugs.launchpad.net/bugs/616510
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
** Branch linked: lp:debian/sid/vlc
--
Insufficient validation of ID3v2 tags
https://bugs.launchpad.net/bugs/616510
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
This bug was fixed in the package vlc - 1.1.3-2ubuntu1
---
vlc (1.1.3-2ubuntu1) maverick; urgency=low
* Merge from Debian experimental, remaining changes:
- build and install the libx264 plugin
vlc (1.1.3-2) experimental; urgency=low
[ Christophe Mutricy ]
* Depends on
Thanks for the debdiff Benjamin. Packages for lucid are being built now
and should appear in the next day or so.
Unsubscribing ubuntu-security-sponsors since there are no more debdiffs
to process.
** Changed in: vlc (Ubuntu Lucid)
Status: Confirmed = Fix Committed
--
Insufficient
Here's the upstream patch for vlc 1.0.6.
** Patch added: cve-2010-2937.patch
https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/616510/+attachment/1495302/+files/cve-2010-2937.patch
--
Insufficient validation of ID3v2 tags
https://bugs.launchpad.net/bugs/616510
You received this bug
Here's my debdiff for lucid-security.
** Patch added: vlc_1.0.6-1ubuntu1.2.debdiff
https://bugs.launchpad.net/ubuntu/+source/vlc/+bug/616510/+attachment/1495600/+files/vlc_1.0.6-1ubuntu1.2.debdiff
** Changed in: vlc (Ubuntu Lucid)
Status: New = Confirmed
--
Insufficient validation
We will fix the bug in maverick with uploading vlc 1.1.3 once it's
released.
I have build the lucid-security package, upgraded it, and it still plays
my videos.
--
Insufficient validation of ID3v2 tags
https://bugs.launchpad.net/bugs/616510
You received this bug notification because you are a
** Changed in: vlc (Ubuntu)
Status: New = Confirmed
** Changed in: vlc
Milestone: None = 1.1.3
** Changed in: vlc
Status: New = Fix Committed
** Bug watch added: Debian Bug tracker #592669
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=592669
** Also affects: vlc
** Also affects: vlc (Ubuntu Jaunty)
Importance: Undecided
Status: New
** Also affects: vlc (Ubuntu Karmic)
Importance: Undecided
Status: New
** Also affects: vlc (Ubuntu Lucid)
Importance: Undecided
Status: New
--
Insufficient validation of ID3v2 tags
13 matches
Mail list logo