Hi Reinhard, * Reinhard Tartler <[EMAIL PROTECTED]> [2008-10-07 13:09]: > Lucas Nussbaum <[EMAIL PROTECTED]> writes: > > > Reinhard Tartler <[EMAIL PROTECTED]> > > xine-lib (#498243) > > Needs help. That report is a security report from ocert. The full report > can be seen here: http://www.ocert.org/analysis/2008-008/analysis.txt > > all fixes from 1.1.15 are backported to debian's 1.1.14 package already, > what is missing are issues 3A-3G.
Can you make the patch available somewhere? Last time I looked at the there were some fixes in the code that didn't actually fix the vulnerability. Cheers Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
