Source: lame
Version: 3.99.5+repack1-5
I rebuilt the package with DEB_BUILD_OPTIONS=nostrip, but there was
still no debugging information in the resulting binary package.
Apparently that's because binaries are built without the -g option.
--
Jakub Wilk
___
Your message dated Wed, 21 Jan 2015 22:18:56 +
with message-id
and subject line Bug#775866: fixed in vlc 2.2.0~rc2-2
has caused the Debian Bug report #775866,
regarding vlc: multiple vulnerabilities
to be marked as done.
This means that you claim that the problem has been dealt with.
If this
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Wed, 21 Jan 2015 22:41:57 +0100
Source: vlc
Binary: libvlc-dev libvlc5 libvlccore-dev libvlccore8 vlc vlc-data vlc-dbg
vlc-nox vlc-plugin-fluidsynth vlc-plugin-jack vlc-plugin-notify vlc-plugin-sdl
vlc-plugin-svg vlc-
vlc_2.2.0~rc2-2_amd64.changes uploaded successfully to localhost
along with the files:
vlc_2.2.0~rc2-2.dsc
vlc_2.2.0~rc2-2.debian.tar.xz
vlc-data_2.2.0~rc2-2_all.deb
vlc-plugin-pulse_2.2.0~rc2-2_all.deb
Greetings,
Your Debian queue daemon (running on host franck.debian.org)
_
On 2015-01-20 21:47:26, Yves-Alexis Perez wrote:
> * Null-pointer dereference in dmo codec:
>
> https://github.com/videolan/vlc/commit/229c385a79d48e41687fae8b4dfeaeef9c8c3eb7
No CVE was issued for this bug, so I'll omit that patch.
Cheers
--
Sebastian Ramacher
signature.asc
Description: Di
On 2015-01-20 21:47:26, Yves-Alexis Perez wrote:
> And there are unfixed ones:
>
> * The potential buffer overflow in the Dirac Encoder was not fixed as
> the Dirac encoder no longer exists in the master branch.
Similarly, 2.2.0~rc2-1 no longer contains the Dirac encoder, so this
only affects w
On Tue, Jan 20, 2015 at 09:47:26PM +0100, Yves-Alexis Perez wrote:
> Source: vlc
> Version: 2.1.5-1
> Severity: grave
> Tags: security
> Justification: user security hole
>
> Hi,
>
> multiple vulnerabilities were reported against vlc 2.1.5. The complete
> mail is at http://seclists.org/oss-sec/20
