Date: Sun, 24 Aug 2008 15:31:09 +0300 From: Pınar Yanardağ <pinar@...dus.org.tr> To: oss-security@...ts.openwall.com Subject: Re: CVE id request: vlc Nico Golde wrote On 24-08-2008 13:10: > Hi, > * Pinar Yanarda<pinar@...dus.org.tr> [2008-08-24 11:23]: > >> Nico Golde wrote On 24-08-2008 03:13: >> >>> Hi, >>> there seems to be a buffer overflow in videolans mms >>> handling: >>> http://www.orange-bat.com/adv/2008/adv.08.24.txt >>> >>> >> Btw, a vendor patch has been released: >> http://mailman.videolan.org/pipermail/vlc-devel/2008-August/048488.html >> > > Wow that was fast, 4 hours after I notified them of the > problem. > Looks correct to me. Anyone else had a look at the patch? > I was having some trouble to apply this patch but they updated it a couple of hours ago, which works fine now. http://mailman.videolan.org/pipermail/vlc-devel/2008-August/048504.html Cheers, -- Pınar Yanardağ http://pinguar.org
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.