From: Mike M. <mi...@mu...> - 2006-06-08 21:11:07
|
Darren Salt wrote: > Are we ready to release xine-lib 1.1.2? I ask mainly because of these > problems in 1.1.1 which have since been fixed in CVS: > > CVE-2005-4048 > CVE-2006-2802 > Possible overflow via a specially-crafted AVI file > > Also CVE-2006-1664 which is reported to be fixed in CVS (ref. Debian bug > 363127), but I've not been able to cause the problem here. Sounds like a good idea, though I would have liked to see an FFmpeg update. That would require some more testing. The security issues are more important. Do you know how to go through the entire release process (Sourceforge)? Thanks... -- -Mike Melanson |