Buildroot Archive on lore.kernel.org
 help / color / mirror / Atom feed
* [Buildroot] [PATCH] vlc: security bump to version 2.1.4
@ 2014-06-17 19:43 Gustavo Zacarias
  2014-06-18 11:56 ` Peter Korsgaard
  0 siblings, 1 reply; 2+ messages in thread
From: Gustavo Zacarias @ 2014-06-17 19:43 UTC (permalink / raw)
  To: buildroot

Fixes CVE-2014-1684: The ASF_ReadObject_file_properties function in
modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media
Player before 2.1.3 allows remote attackers to cause a denial of service
(divide-by-zero error and crash) via a zero minimum and maximum data
packet size in an ASF file.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
---
 package/vlc/vlc.mk | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package/vlc/vlc.mk b/package/vlc/vlc.mk
index 6eb7eea..6c4677a 100644
--- a/package/vlc/vlc.mk
+++ b/package/vlc/vlc.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-VLC_VERSION = 2.1.2
+VLC_VERSION = 2.1.4
 VLC_SITE = http://download.videolan.org/pub/videolan/vlc/$(VLC_VERSION)
 VLC_SOURCE = vlc-$(VLC_VERSION).tar.xz
 VLC_LICENSE = GPLv2+ LGPLv2.1+
-- 
1.8.5.5

^ permalink raw reply related	[flat|nested] 2+ messages in thread
* [Buildroot] [PATCH] vlc: security bump to version 2.1.4
  2014-06-17 19:43 [Buildroot] [PATCH] vlc: security bump to version 2.1.4 Gustavo Zacarias
@ 2014-06-18 11:56 ` Peter Korsgaard
  0 siblings, 0 replies; 2+ messages in thread
From: Peter Korsgaard @ 2014-06-18 11:56 UTC (permalink / raw)
  To: buildroot

>>>>> "Gustavo" == Gustavo Zacarias <gustavo@zacarias.com.ar> writes:

 > Fixes CVE-2014-1684: The ASF_ReadObject_file_properties function in
 > modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media
 > Player before 2.1.3 allows remote attackers to cause a denial of service
 > (divide-by-zero error and crash) via a zero minimum and maximum data
 > packet size in an ASF file.

 > Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>

Committed, thanks.

-- 
Bye, Peter Korsgaard

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2014-06-18 11:56 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2014-06-17 19:43 [Buildroot] [PATCH] vlc: security bump to version 2.1.4 Gustavo Zacarias
2014-06-18 11:56 ` Peter Korsgaard

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox