-
Committer:
Lionel Le Folgoc
-
Date:
2009-04-04 20:54:06 UTC
-
Revision ID:
mrpouit@ubuntu.com-20090404205406-5tsrvww3yc9oxiy2
* Merged from Ubuntu, remaining Medibuntu changes:
- debian/rules: added --with-mp4v2 configure flag
- debian/control:
+ added libmp4v2-dev to Build-Depends
+ added Medibuntu disclaimer to the Description field
+ updated Maintainer field
+ added our Vcs-* fields
* SECURITY UPDATE: integer overflows allow remote attackers to execute
arbitrary code via an Audible Audio (.aa) file (LP: #318555)
- debian/patches/security_audible_tags.diff fix integer overflow while
reading audible aa file tags. Based on upstream patch.
- http://websvn.kde.org/?view=rev&revision=908415
- http://www.trapkit.de/advisories/TKADV2009-002.txt
- CVE-2009-0135
- CVE-2009-0136