vlc/vlc-2.2 | branch: master | Jean-Baptiste Kempf <[email protected]> | Tue Apr 14 15:46:09 2015 +0200| [83ded1908f348cc8fe0dcb16379be4ab2e496291] | committer: Jean-Baptiste Kempf
Update NEWS with CVE numbers > http://git.videolan.org/gitweb.cgi/vlc/vlc-2.2.git/?a=commit;h=83ded1908f348cc8fe0dcb16379be4ab2e496291 --- NEWS | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/NEWS b/NEWS index a97c82b..241fde4 100644 --- a/NEWS +++ b/NEWS @@ -8,7 +8,7 @@ Codec: * Fix lpcm channel ordering * Fix potential NULL dereference in dmo * Fix teletext framing code in DVB PES packets - * Fix potential buffer overflow in schroendinger decoder + * Fix potential buffer overflow in schroendinger decoder (CVE-2014-9629) * Fix AAC samplerate Demuxers: @@ -244,13 +244,14 @@ Audio output: Security: * Fix heap overflow in decomp stream filter - * Fix buffer overflow in updater + * Fix buffer overflow in updater (CVE-2014-9625) * Fix potential buffer overflow in schroedinger encoder * Fix null-pointer dereference in DMO decoder - * Fix buffer overflow in parsing of string boxes in mp4 demuxer + * Fix buffer overflow in parsing of string boxes in mp4 demuxer (CVE-2014-9626,9627,9628) * Fix SRTP integer overflow * Fix potential crash in zip access * Fix read overflow in Ogg demuxer + * Fix RTP overflow (CVE-2014-9630) Win32 installer: * Update translations and greek encoding _______________________________________________ vlc-commits mailing list [email protected] https://mailman.videolan.org/listinfo/vlc-commits
