lp://staging/ubuntu/gutsy-security/faad2
- Get this branch:
- bzr branch lp://staging/ubuntu/gutsy-security/faad2
Branch merges
Branch information
Recent revisions
- 7. By Stefan Lesicnik
-
* SECURITY UPDATE: Heap-based buffer overflow in the decodeMP4file function
(frontend/main.c) in FAAD2 before 2.6.1 allows remote attackers to cause
a denial of service (crash) and possibly execute arbitrary code via a
crafted MPEG-4 (MP4) file. (Closes LP: #277110)
* 11_CVE-2008-4201. diff
- Patch supplied by upstream modified slightly to patch cleanly
and address vulnerability.
* References
http://web.nvd. nist.gov/ view/vuln/ detail? vulnId= CVE-2008- 4201
http://www.audiocoding .com/patch/ main_overflow. diff
CVE-2008-4201 - 6. By Luca Falavigna
-
* 10_libmp4_
sample_ check.diff: fixed SIGSEGV while listening to m4a
files (LP: 40043)
* Update Maintainer field in debian/control - 4. By Sebastian Dröge
-
* 01_systems.h.diff:
+ Fix the config.h include to mp4_config.h and copy config.h to
/usr/include/ mp4_config. h. Bad bad upstream - 2. By Sebastian Dröge <email address hidden>
-
* The "Go Open videos are playable now" release
* Sync from CVS (newest version we can ship because of license changes)
* Added bmp plugin and libmp4v2 to tarball
* Added autotools stuff to tarball
* Removed 01_bmp-plugin.diff, 02_Make.am.diff, 03_autoreconf.diff,
05_option_w.diff, 08_amd64.diff
* Updated 09_amd64.diff
* Fixed the API to be compatible again with 2.0.0
* libmp4ff isn't shipped by default anymore: for compatibility reasons we
ship it
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://staging/ubuntu/karmic/faad2