[MPlayer-users] Why no security advisory for CVE-2008-3827
Loren Merritt
lorenm at u.washington.edu
Sat Oct 11 12:50:09 CEST 2008
On Sat, 11 Oct 2008, Manuel Reimer wrote:
> some days ago the following link was posted around several news services:
>
> http://www.ocert.org/advisories/ocert-2008-013.html
>
> So far there is *no* information about this hole on the mplayer homepage
> and there seems to be even no official patch for the hole.
Did you miss the part in the very page you linked which says the bug was
fixed before the CERT was published, and links to the commit?
Or do you expect us to release a new official binary every time some bug
gets fixed?
--Loren Merritt
More information about the MPlayer-users
mailing list