[MPlayer-DOCS] CVS: homepage/src news.src.en,1.163,1.164
Diego Biurrun CVS
syncmail at mplayerhq.hu
Fri Dec 17 01:16:42 CET 2004
CVS change done by Diego Biurrun CVS
Update of /cvsroot/mplayer/homepage/src
In directory mail:/var2/tmp/cvs-serv31977/src
Modified Files:
news.src.en
Log Message:
1.0pre5try2 news entry spellchecked, reworded and markup harmonized.
Index: news.src.en
===================================================================
RCS file: /cvsroot/mplayer/homepage/src/news.src.en,v
retrieving revision 1.163
retrieving revision 1.164
diff -u -r1.163 -r1.164
--- news.src.en 15 Dec 2004 23:31:13 -0000 1.163
+++ news.src.en 17 Dec 2004 00:16:39 -0000 1.164
@@ -13,56 +13,44 @@
</h2>
<p>
-Vulnerability fixes
-</p>
-<p>
-Multiple vulnerabilities were discovered in MPlayer by iDEFENSE, and more
-were found by us while reviewing the code:
+Multiple vulnerabilities were discovered in MPlayer by
+<a href="http://www.idefense.com/">iDEFENSE</a>, and
+more were found by us while reviewing the code:
</p>
+
<ul>
- <li>
- potential heap overflow in Real rtsp streaming code
- <a href="http://www1.mplayerhq.hu/MPlayer/patches/rtsp_fix_20041215.diff">patch here</a>
- </li>
- <li>
- potential stack overflow in mmst streaming code
- <a href="http://www1.mplayerhq.hu/MPlayer/patches/mmst_fix_20041215.diff">patch here</a>
- </li>
- <li>
- multiple buffer overflows in bmp demuxer
- <a href="http://www1.mplayerhq.hu/MPlayer/patches/bmp_fix_20041215.diff">patch here</a>
- </li>
- <li>
- potential heap overflow in pnm streaming code
- <a href="http://www1.mplayerhq.hu/MPlayer/patches/pnm_fix_20041215.diff">patch here</a>
- </li>
- <li>
- potential buffer overflow in mp3lib
- <a href="http://www1.mplayerhq.hu/MPlayer/patches/mp3_fix_20041215.diff">patch here</a>
- </li>
+ <li>potential heap overflow in Real RTSP streaming code
+ <a href="http://www.mplayerhq.hu/MPlayer/patches/rtsp_fix_20041215.diff">patch</a></li>
+ <li>potential stack overflow in MMST streaming code
+ <a href="http://www.mplayerhq.hu/MPlayer/patches/mmst_fix_20041215.diff">patch</a></li>
+ <li>multiple buffer overflows in BMP demuxer
+ <a href="http://www.mplayerhq.hu/MPlayer/patches/bmp_fix_20041215.diff">patch</a></li>
+ <li>potential heap overflow in pnm streaming code
+ <a href="http://www.mplayerhq.hu/MPlayer/patches/pnm_fix_20041215.diff">patch</a></li>
+ <li>potential buffer overflow in mp3lib
+ <a href="http://www.mplayerhq.hu/MPlayer/patches/mp3_fix_20041215.diff">patch</a></li>
</ul>
<p>
-All issues affect both pre5 and CVS version.<br>
-0.93 version is obsolete and was not checked nor fixed.
+All issues affect both MPlayer 1.0pre5 and current CVS versions.
+MPlayer 0.93 is obsolete and was not checked nor fixed.
</p>
+
<p>
-All problems were fixed, and the bmp demuxer was also disabled because it's
+All problems were fixed, and the BMP demuxer was also disabled because it's
useless and requires further analysis to be totally safe.
</p>
+
<ul>
- <li>
- pre5 users: upgrade to pre5try2 or apply this
- <a href="http://www1.mplayerhq.hu/MPlayer/patches/pre5-pre5try2.diff">cumulative patch</a>
- </li>
- <li>
- CVS users: cvs update
- </li>
+ <li>1.0pre5 users: upgrade to 1.0pre5try2 or apply this
+ <a href="http://www.mplayerhq.hu/MPlayer/patches/pre5-pre5try2.diff">cumulative patch</a></li>
+ <li>CVS users: cvs update</li>
</ul>
<p>
-An updated build from CVS is also available for Windows users
-<a href="http://www1.mplayerhq.hu/MPlayer/releases/win32-beta/">here</a>
+An updated
+<a href="http://www.mplayerhq.hu/MPlayer/releases/win32-beta/">CVS build</a>
+for Windows users is also available.
</p>
<p>
@@ -98,6 +86,7 @@
</div>
+
<div class="newsentry">
<h2>
More information about the MPlayer-DOCS
mailing list