Difference between revisions of "Changelog/0.8.6g"
Jump to navigation
Jump to search
m (Added missing CVE) |
|||
| Line 2: | Line 2: | ||
== Security updates == | == Security updates == | ||
| − | * Removed VLC variable settings from Mozilla and ActiveX ({{CVE|2007-6683}}, {{VideoLAN-SA|0804}} | + | * Removed VLC variable settings from Mozilla and ActiveX ({{CVE|2007-6683}}, {{VideoLAN-SA|0804}}) |
| − | * Removed loading plugins from the current directory ({{CVE|2008-2147}}, {{VideoLAN-SA|0805}} | + | * Removed loading plugins from the current directory ({{CVE|2008-2147}}, {{VideoLAN-SA|0805}}) |
* Updated libpng on Windows and Mac OS X ({{CVE|2008-1382}}) | * Updated libpng on Windows and Mac OS X ({{CVE|2008-1382}}) | ||
* Fixed libid3tag denial of service ({{CVE|2008-2109}}) | * Fixed libid3tag denial of service ({{CVE|2008-2109}}) | ||
* Fixed libvorbis vulnerabilities ({{CVE|2008-1419}}, {{CVE|2008-1420}}, {{CVE|2008-1423}}) | * Fixed libvorbis vulnerabilities ({{CVE|2008-1419}}, {{CVE|2008-1420}}, {{CVE|2008-1423}}) | ||
| − | * Fixed speex insufficient boundary check (oCERT-2008-004) | + | * Fixed speex insufficient boundary check (CVE-2008-1686, oCERT-2008-004) |
== Various bugfixes == | == Various bugfixes == | ||
Revision as of 01:54, 9 June 2008
Changes between 0.8.6f and 0.8.6g
Security updates
- Removed VLC variable settings from Mozilla and ActiveX (CVE-2007-6683, VideoLAN-SA-0804)
- Removed loading plugins from the current directory (CVE-2008-2147, VideoLAN-SA-0805)
- Updated libpng on Windows and Mac OS X (CVE-2008-1382)
- Fixed libid3tag denial of service (CVE-2008-2109)
- Fixed libvorbis vulnerabilities (CVE-2008-1419, CVE-2008-1420, CVE-2008-1423)
- Fixed speex insufficient boundary check (CVE-2008-1686, oCERT-2008-004)
