Bug#458318: Three security issues in vlc

Nico Golde nion at debian.org
Thu Jan 3 20:15:31 UTC 2008 

tags 458318 + patch
thanks

Hi,
* Nico Golde <nion at debian.org> [2008-01-03 20:46]:
> * Stefan Fritsch <sf at sfritsch.de> [2007-12-30 12:56]:
> [...] 
> > According to http://www.securityfocus.com/archive/1/485488/30/0/threaded , there
> > are two more unfixed security issues in vlc:
> > 
> > A] buffer-overflow in the handling of the subtitles
> > B] format string in the web interface
> 
> Here we come with the fifth vulnerability:
> https://trac.videolan.org/vlc/changeset/23197

I am not 100% sure if this is the same issue like described 
on http://mailman.videolan.org/pipermail/vlc-devel/2007-December/037726.html
and https://trac.videolan.org/vlc/ticket/1371. If this only 
affects EXTVLCOPT then they are equal. The support for 
EXTVLCOPT was dropped to fix this. Anyone knows more?

Patches for all issues attached.

Is anyone already packaging 0.8.6d?

Kind regards
Nico
-- 
Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: sec-httpd_formatstring.diff
Type: text/x-diff
Size: 565 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-multimedia-maintainers/attachments/20080103/2734bd34/attachment-0004.diff 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: sec-remove_vlcopt_support.diff
Type: text/x-diff
Size: 2078 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-multimedia-maintainers/attachments/20080103/2734bd34/attachment-0005.diff 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: sec-rtsp_remote_dos.diff
Type: text/x-diff
Size: 1399 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-multimedia-maintainers/attachments/20080103/2734bd34/attachment-0006.diff 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: sec-subtitle_buffer_overflow.diff
Type: text/x-diff
Size: 1869 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-multimedia-maintainers/attachments/20080103/2734bd34/attachment-0007.diff 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-multimedia-maintainers/attachments/20080103/2734bd34/attachment-0001.pgp

More information about the pkg-multimedia-maintainers mailing list