xine-lib 1.1.15-0ubuntu3.1 source package in Ubuntu
Changelog
xine-lib (1.1.15-0ubuntu3.1) intrepid-security; urgency=low
* SECURITY UPDATE: backported security fixes from upstream xine-lib hg repo:
- debian/patches/01_SECURITY_invalid_track_type.dpatch: Avoid segfault on
invalid track type in Matroska files.
- debian/patches/02_SECURITY_ffmpeg_video_overflow.dpatch: Heap buffer
overflow in the ffmpeg video decoder.
- debian/patches/03_SECURITY_ffmpeg_audio_overflow.dpatch: Integer overflow
in the ffmpeg audio decoder
- debian/patches/04_SECURITY_cdda_server_overflow.dpatch: Integer overflow
in the the CDDA server.
- debian/patches/05_SECURITY_CVE-2008-5234.dpatch: Heap overflow and
unchecked malloc in Quicktime atom parsing. (CVE-2008-5234, CVE-2008-5242)
- debian/patches/06_SECURITY_CVE-2008-5236.dpatch: Buffer overflows in
Matroska, Real and RealAudio demuxers. (CVE-2008-5236)
- debian/patches/07_SECURITY_CVE-2008-5237.dpatch: Integer overflows in
MNG and QT demuxers. (CVE-2008-5237)
- debian/patches/08_SECURITY_CVE-2008-5239.dpatch: Out-of-bounds reads and
heap-based buffer overflows from unchecked or incompletely-checked read
function results. (CVE-2008-5239)
- debian/patches/09_SECURITY_CVE-2008-5240.dpatch: Unchecked malloc using
untrusted values. (CVE-2008-5240)
- debian/patches/10_SECURITY_CVE-2008-5241.dpatch: Integer underflow in qt
compressed atom handling. (CVE-2008-5241)
- debian/patches/11_SECURITY_CVE-2008-5243.dpatch: Buffer indexing using
untrusted or unchecked values. (CVE-2008-5243)
-- Marc Deslauriers <email address hidden> Wed, 21 Jan 2009 08:32:25 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Intrepid
- Original maintainer:
- Ubuntu Development Team
- Architectures:
- any
- Section:
- libs
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| xine-lib_1.1.15.orig.tar.gz | 8.7 MiB | e0368172176b11ba4766b9a6e301891bc87b69bcbfecad7a0497a1db3327fd4f |
| xine-lib_1.1.15-0ubuntu3.1.diff.gz | 38.9 KiB | b51657d1bec3ad8667c2191fd309e8caa94d9d5f5cc69fa91045d75e9b520221 |
| xine-lib_1.1.15-0ubuntu3.1.dsc | 2.3 KiB | b4fd020cd608640f07ad6cb0834c3a07ccfdcfd7e1327feeb2e996576cc40adc |
Available diffs
Binary packages built by this source
- libxine-dev: No summary available for libxine-dev in ubuntu intrepid.
No description available for libxine-dev in ubuntu intrepid.
- libxine1: No summary available for libxine1 in ubuntu intrepid.
No description available for libxine1 in ubuntu intrepid.
- libxine1-all-plugins: No summary available for libxine1-all-plugins in ubuntu intrepid.
No description available for libxine1-
all-plugins in ubuntu intrepid.
- libxine1-bin: No summary available for libxine1-bin in ubuntu intrepid.
No description available for libxine1-bin in ubuntu intrepid.
- libxine1-console: No summary available for libxine1-console in ubuntu intrepid.
No description available for libxine1-console in ubuntu intrepid.
- libxine1-dbg: No summary available for libxine1-dbg in ubuntu intrepid.
No description available for libxine1-dbg in ubuntu intrepid.
- libxine1-doc: No summary available for libxine1-doc in ubuntu intrepid.
No description available for libxine1-doc in ubuntu intrepid.
- libxine1-ffmpeg: No summary available for libxine1-ffmpeg in ubuntu intrepid.
No description available for libxine1-ffmpeg in ubuntu intrepid.
- libxine1-gnome: No summary available for libxine1-gnome in ubuntu intrepid.
No description available for libxine1-gnome in ubuntu intrepid.
- libxine1-misc-plugins: No summary available for libxine1-misc-plugins in ubuntu intrepid.
No description available for libxine1-
misc-plugins in ubuntu intrepid.
- libxine1-plugins: No summary available for libxine1-plugins in ubuntu intrepid.
No description available for libxine1-plugins in ubuntu intrepid.
- libxine1-x: No summary available for libxine1-x in ubuntu intrepid.
No description available for libxine1-x in ubuntu intrepid.
