Seems like the fixed packages for dapper got released; I got them yesterday evening via dapper-security.
Curiously, /usr/share/doc/vlc/changelog.Debian.gz doesn't refer or even mention this bug report or it's CVE references, so I'm wondering what got fixed in the new packages...? -- vlc before 0.8.6c allows arbitrary code execution via a multitude of vectors https://bugs.launchpad.net/bugs/122207 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
