[MPlayer-dev-eng] mplayer & DSA 1244-1

A Mennucc mennucc1 at debian.org
Fri Dec 29 19:19:17 CET 2006


dear MPlayer team,

I think that MPlayer is vulnerable as well to the
problem DSA 1244-1 (see attachment);

I adapted the patch that was used on libxine1 ;
the result is the  patch in attachment ;
I applied to the version of MPlayer in Debian;

please review the patch and tell me if it looks OK.

a.

ps: I had sent an email to Diego and Dariush (hence the CC), but maybe
they are vacationing
-------------- next part --------------
A non-text attachment was scrubbed...
Name: mplayer--asmrp.patch
Type: text/x-patch
Size: 2638 bytes
Desc: not available
URL: <http://lists.mplayerhq.hu/pipermail/mplayer-dev-eng/attachments/20061229/16788138/attachment.bin>
-------------- next part --------------
An embedded message was scrubbed...
From: Moritz Muehlenhoff <jmm at debian.org>
Subject: [SECURITY] [DSA 1244-1] New xine-lib packages fix arbitrary code
	execution
Date: Thu, 28 Dec 2006 18:39:00 +0100
Size: 10197
URL: <http://lists.mplayerhq.hu/pipermail/mplayer-dev-eng/attachments/20061229/16788138/attachment.eml>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 252 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mplayerhq.hu/pipermail/mplayer-dev-eng/attachments/20061229/16788138/attachment.pgp>


More information about the MPlayer-dev-eng mailing list