Date: Sun, 9 Nov 2008 16:04:24 +0000 (UTC) From: Martin Wilke <miwi@FreeBSD.org> To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/multimedia/vlc Makefile ports/multimedia/vlc/files patch-modules__access__vcd__cdrom.c Message-ID: <200811091604.mA9G4Odk096477@repoman.freebsd.org>
index | next in thread | raw e-mail
miwi 2008-11-09 16:04:24 UTC
FreeBSD ports repository
Modified files:
multimedia/vlc Makefile
Added files:
multimedia/vlc/files patch-modules__access__vcd__cdrom.c
Log:
Fix a stack overflow vulnerability while parsing malformed cue files.
The vulnerability may be exploited by a (remote) attacker to execute
arbitrary code in the context of VLC media player.
PR: 128660
Submitted by: "Joseph S. Atkinson" <jsa@wickedmachine.net> (maintainer)
Security: http://www.vuxml.org/freebsd/4b09378e-addb-11dd-a578-0030843d3802.html
Revision Changes Path
1.178 +1 -1 ports/multimedia/vlc/Makefile
1.1 +111 -0 ports/multimedia/vlc/files/patch-modules__access__vcd__cdrom.c (new)
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200811091604.mA9G4Odk096477>