This bug was fixed in the package vlc - 1.1.9-1ubuntu1.3 --------------- vlc (1.1.9-1ubuntu1.3) natty-security; urgency=low
* SECURITY UPDATE: Heap overflow in RealMedia demuxer (LP: #807486) - debian/patches/CVE-2011-2587.patch: real: fix heap buffer overflow, thanks to Rémi Denis-Courmont - CVE-2011-2587 - VideoLAN-SA-1105 * SECURITY UPDATE: Heap overflow in AVI demuxer (LP: #807488) - debian/patches/CVE-2011-2588.patch: AVI: fix heap buffer overflow, thanks to Rémi Denis-Courmont - CVE-2011-2588 - VideoLAN-SA-1106 -- Benjamin Drung <bdr...@ubuntu.com> Mon, 18 Jul 2011 15:48:36 +0200 ** Changed in: vlc (Ubuntu Natty) Status: New => Fix Released ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2011-2587 ** Changed in: vlc (Ubuntu Maverick) Status: New => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/807488 Title: vlc: AVI demuxer integer overflow To manage notifications about this bug go to: https://bugs.launchpad.net/vlc/+bug/807488/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs