File Release Notes and Changelog
Release Name: 1.1.11
Notes: Another security bug fix release. Mostly bug fixes. MD5: e114c79278a62ccf02551ab966c6a02e xine-lib-1.1.11.tar.bz2 8421b09b5da4cabb868a5d00093d96f7 xine-lib-1.1.11.tar SHA1: fc5a853eba5b1d1602f4fcd3ca5f7d572db1f89a xine-lib-1.1.11.tar.bz2 9c3e3eef0b1842c874dd6a7b09b61971a12276bd xine-lib-1.1.11.tar
Changes: * Security fixes: - Array Indexing Vulnerability in sdpplin_parse(). (CVE-2008-0073) * Reworked the plugin directory naming so that external plugins don't have to be rebuilt for every release. We now use a naming scheme based on the API/ABI versioning, checking older directories - with this release, the plugin directory name is 1.20, and if this gets bumped to 1.21 in a future release, 1.20 will still be available for external plugins. (Any directories not 1.* won't be looked in.) * Made the version parsing much more reliable; it wasn't properly coping with four-part version numbers. This affects any program whose build scripts use xine-lib's automake macros. * Fixed an off-by-one in the FLAC security fix patch. This breakage was causing failure to play some files. * Support 16-bit big-endian DTS audio. * Improved frame snapshot API. (ABI extension.) * Re-add support for # (stream parameter separator) in raw filenames, without the bugs found in the original implementation. (This is a convenience feature for users only. Front ends which rely on it for functions like subtitle file detection must instead use file:// MRLs; if they don't, we consider them to be buggy.) * Fixed long delay when closing stream on dual core systems
