]> git.sesse.net Git - vlc/blobdiff - NEWS
projects / vlc / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Updated the CVE references for 0.8.6f
[vlc] / NEWS
diff --git a/NEWS b/NEWS
index 6aaecf8b1f379500b361236d40cb2c3c494d4d4f..cd280f0ac048e0b2440c11d1745b181e22c161b8 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -201,8 +201,9 @@ Changes between 0.8.6e and 0.8.6f:
 Security updates:
  * Really fixed subtitle buffer overflow (CVE-2007-6681)
  * Fixed Real RTSP code execution problem (CVE-2008-0073)
- * Fixed MP4 integer overflows (CVE-2008-1489)
- * Fixed cinepak integer overflow
+ * Fixed MP4 integer overflows (CVE-2008-1489, CVE-2008-1768)
+ * Fixed cinepak vulnerabilities (CVE-2008-1769)
+ - More information can be found in VideoLAN-SA-0801 and VideoLAN-SA-0803.
 
 Various bugfixes:
  * The Mozilla plugin registers a usable range of MIME-types on Mac OS X
Unnamed repository; edit this file 'description' to name the repository.