-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2011-04-06 09:18:38 UTC
-
mfrom:
(20.1.2 natty)
-
Revision ID:
james.westby@ubuntu.com-20110406091838-92gtni5bjflsojmc
Tags: 4:0.6-2ubuntu3.1
* SECURITY UPDATE: denial of service via crafted .ogg file
- debian/patches/fix-CVE-2010-4704.patch: validate codebook in
libavcodec/vorbis_dec.c.
- CVE-2010-4704
* SECURITY UPDATE: denial of service and possible code execution via
crafted WebM file
- debian/patches/fix-CVE-2011-0480.patch: check rangebits in
libavcodec/vorbis_dec.c.
- CVE-2011-0480
* SECURITY UPDATE: denial of service and possible code execution via
crafted VC1 file (LP: #690169)
- debian/patches/fix-CVE-2011-0723.patch: fix invalid reads in
libavcodec/vc1dec.c.
- CVE-2011-0723