vlc 1.1.4
VLC media player
Packager: Serdar Dalgıç
License: GPLv2
Actions
Binary packages
Release history
| Release | Release date | Version | Updater | Comment |
|---|---|---|---|---|
| 53 | 2011-07-20 | 1.1.4 | Serdar Dalgıç | Add fixes for heap buffer overflows in real and avi demuxers, CVE-2011-2587 and CVE-2011-2588. |
| 52 | 2011-06-13 | 1.1.4 | Serdar Dalgıç | Fix realloc() buffer overflow in xspf demuxer, CVE-2011-2194, pb #18346. |
| 51 | 2011-04-12 | 1.1.4 | Serdar Dalgıç | Fix heap corruption in MP4 demultiplexer VideoLAN-SA-1103, pb #17747. |
| 50 | 2011-02-09 | 1.1.4 | Serdar Dalgıç | CVE-2011-0531.patch: Insufficient input validation in MKV demuxer (CVE-2011-0531), pardus bug 16806. |
| 49 | 2011-02-07 | 1.1.4 | Serdar Dalgıç | CVE-2011-0021.patch: Fix heap overflows in CDG decoder (CVE-2011-0021). pardus 16768. |
| 48 | 2011-01-31 | 1.1.4 | Serdar Dalgıç | CVE-2011-0522.patch: Fix subtitle StripTags heap corruption (CVE-2011-0522). pardus 16513. |
| 47 | 2011-01-05 | 1.1.4 | Serdar Dalgıç | CVE-2010-3907.patch: VLC Media Player Real Demuxer File Handling Array Indexing Vulnerability, pardus 16009. |
| 46 | 2010-12-20 | 1.1.4 | Serdar Dalgıç | * Write strict dependency for libprojectM, (pardus #15681) * when the hell did I remove libmtp dependency? |
| 45 | 2010-11-30 | 1.1.4 | Onur Küçük | Depend on latest x264 |
| 44 | 2010-11-03 | 1.1.4 | Onur Küçük | Write strict dependency to new version of x264 |
| 43 | 2010-10-11 | 1.1.4 | Serdar Dalgıç | ReleaseFrom is usefull than Release while writing dependencies. |
| 42 | 2010-09-28 | 1.1.4 | Serdar Dalgıç | Write strict dependencies and remove some unused deps. |
| 41 | 2010-09-14 | 1.1.4 | Serdar Dalgıç | Tag new release as a security update, see CVE-2010-2937 for details. Fixes #13974. |
| 40 | 2010-09-10 | 1.1.4 | Serdar Dalgıç | Version bump with many security fixes. |
| 39 | 2010-09-01 | 1.1.2 | Serdar Dalgıç | Version bump, add missing deps, reorganize patches, reorganize configure parameters. |
| 38 | 2010-08-27 | 1.0.6 | Onur Küçük | Remove essential dependency |
| 37 | 2010-05-27 | 1.0.6 | Onur Küçük | Write strict dependency to new version of x264,libva |
| 36 | 2010-05-13 | 1.0.6 | Onur Küçük | Write strict dependency to new version of kdepimlibs,qt,kdebase,kdebase-runtime,kdebase-workspace,kdelibs,kdelibs-devel,kdepimlibs-devel |
| 35 | 2010-04-27 | 1.0.6 | Serdar Dalgıç | - Add missing dependencies: fontconfig, gtk2, libebml, libmtp, libXext, libXinerama, libXv, libXxf86vm, schroedinger, taglib, twolame and xcb-util. - Version bump: Access: * Fix crash on FTP URI with no file path Decoders/Packetizers: * Fix overflows in A/52, DTS, MPEG Audio and subtitles support Demuxers: * Update LUA script for Youtube pages * Fix crashes in AVI, ASF and Matroska files * Fix crashes on malformatted ZIP archives * Fix crashes and leaks in the FFmpeg/avformat plugin * Fix crash on invalid XSPF playlist X11 port: * Partial Xlib threading fixes. Interfaces: * Fix crash (use after free) in Qt4 bookmarks * Fix a few crashes in Qt4 playlist Translations fixes. Removed modules: * RTMP input and output are removed due to security problems. Please update to VLC 1.1.0 which provides an FFmpeg-based RTMP input if needed. (Serdar s note, I will :) ) - Will fix bug # 12740. |
| 34 | 2010-03-20 | 1.0.5 | Gökçen Eraslan | Add libproxy dependency. |
| 33 | 2010-02-10 | 1.0.5 | Onur Küçük | Depend on new x264 and faad2 |
| 32 | 2010-02-02 | 1.0.5 | Serdar Dalgıç | Bump to latest stable 1.0.5; changes from 1.0.4 to 1.0.5: Decoders: * SubRip extra styles improvements * Fix potential crashes in SSA and svg decoders Translations: various translation improvements. |
| 31 | 2009-12-14 | 1.0.4 | Serdar Dalgıç | * Version bump to 1.0.4. See NEWS file for changes between releases, Changelog for detailed changes. * Add MimeType to vlc.desktop, so that vlc is added to right click Open With menus. |
| 30 | 2009-10-20 | 1.0.2 | Onur Küçük | Fix bframe pyramid in x264 |
| 29 | 2009-10-16 | 1.0.2 | Onur Küçük | Depend on new x264 Remove cvs dependency |
| 28 | 2009-09-20 | 1.0.2 | Serdar Dalgıç | Version bump to 1.0.2. See Changelog for the details |
| 27 | 2009-09-18 | 1.0.1 | Serdar Dalgıç | Multiple stack-based buffer overflows in ASF, AVI, MP4 demuxers. Pardus bug no:11188, Q4, S3. |
| 26 | 2009-07-30 | 1.0.1 | Serdar Dalgıç | -- Version bump to 1.0.1 version that fixes most of the notable bugs and regressions that were present in the 1.0.0 version: * fix flv and mpeg2 seeking, * fixes for wmv, wav, rtsp and ssa support, * fix sound recording of .flv files with mp3 audio * Add extra caching for files on network shares * fixes for Qt and Mac OS X interface, * fix an integer underflow in Real pseudo-RTSP module, * updates of some translations. -- Add missing dependencies: libtar and fluidsynth Security information: Q4 for quality of update, S4 for severity |
| 25 | 2009-07-14 | 1.0.0 | Serdar Dalgıç | - Major Version bump to 1.0.0, patches are reorganized. |
| 24 | 2008-12-02 | 0.9.8 | Ozan Çağlayan | - Version bump to 0.9.8, - Remove rtsp-tcp patch as it breaks RTSP streams. |
| 23 | 2008-08-23 | 0.8.6i | Pınar Yanardağ | MMS Integer handling fixes, including buffer overflow. |
| 22 | 2008-08-23 | 0.8.6i | Pınar Yanardağ | Fix multiple vulnerabilities including TTA related DoS attack issue. (CVE-2008-3732) |
| 21 | 2008-07-31 | 0.8.6i | Ekin Meroğlu | Add missing sdl-image dependency |
| 20 | 2008-07-31 | 0.8.6i | Onur Küçük | Depend on new dvdnav for var/pisi problem fix |
| 19 | 2008-07-18 | 0.8.6i | Gökçen Eraslan | Version bump: Security updates * Fixed integer overflow in WAV demuxer (CVE-2008-2430) Various bugfixes * Fixed option to use shared memory within the GLX video output module * Improved galaktos-based audio visualizations on FreeBSD * Miscellaneous bugfixes in multiple modules and in libvlc (transcode stream output, OSD menu video filter, VCD input, SAP services discovery, http control interface) * Updated Polish translation |
| 18 | 2008-07-03 | 0.8.6h | Eren Türkay | Fix WAV Processing Integer Overflow, CVE-2008-2430. |
| 17 | 2008-06-09 | 0.8.6h | Eren Türkay | Version bump to fix GnuTLS, Libxml2 vulnerabilities. CVE-2008-1948, CVE-2008-1949, CVE-2008-1950, CVE-2007-6284 |
| 16 | 2008-06-05 | 0.8.6g | Onur Küçük | Version bump to fix CVE-2007-6683, CVE-2008-2147, CVE-2008-2109, CVE-2008-1419, CVE-2008-1420, CVE-2008-1423 and various bugfixes |
| 15 | 2008-05-01 | 0.8.6f | Eren Türkay | Re fix buffer overflow in speex decoder, CVE-2008-1686. New version of VLC didn't include this patch. |
| 14 | 2008-04-23 | 0.8.6f | Onur Küçük | Add lots of fixes, port to new dca ffmpeg etc., add pulseaudio support and make it default, compile with 2008 chain etc. |
| 13 | 2008-04-23 | 0.8.6f | Gökçen Eraslan | Version bump |
| 12 | 2008-03-25 | 0.8.6e | Eren Türkay | Fix CVE-2008-1489 |
| 11 | 2008-03-19 | 0.8.6e | Eren Türkay | Add patch to fix array indexing vulnerability while streaming RTSP, https://trac.videolan.org/vlc/ticket/1531 |
| 10 | 2008-03-18 | 0.8.6e | Eren Türkay | Add patch to fix subtitle buffer overflow, https://trac.videolan.org/vlc/ticket/1526 |
| 9 | 2008-02-27 | 0.8.6e | Gökçen Eraslan | Version bump (fix CVE-2008-0984) |
| 8 | 2008-01-21 | 0.8.6c | İsmail Dönmez | Correctly enable Firefox plugin |
| 7 | 2008-01-11 | 0.8.6c | İsmail Dönmez | Fix multiple security vulnerabilities |
| 6 | 2007-09-23 | 0.8.6c | İsmail Dönmez | Fix crashes with X11 output |
| 5 | 2007-06-18 | 0.8.6c | İsmail Dönmez | Stable update to fix multiple vulnerabilities |
| 4 | 2007-04-29 | 0.8.6b | İsmail Dönmez | Lots of cleanups |
| 3 | 2007-04-21 | 0.8.6b | İsmail Dönmez | Stable update |
| 2 | 2007-03-10 | 0.8.6a | İsmail Dönmez | Compile with new flac |
| 1 | 2007-02-05 | 0.8.6a | Ali Erdinç Köroğlu | First release. |
Patches
default-font.patchosdmenu-path-vlc-1.0.0.patch
altivec_in_vlc.1.0.0.patch
300_all_pic.patch
020_all_check_headers_regexps.patch
CVE-2010-3907.patch
CVE-2011-0522.patch
CVE-2011-0021.patch
CVE-2011-0531.patch
VideoLAN-SA-1103.patch
CVE-2011-2194-fix-realloc-buffer-overflow.patch
CVE-2011-2587-fix-heap-buffer-overflow-in-real-demuxer.patch
CVE-2011-2588-fix-heap-buffer-overflow-in-avi-demuxer.patch