[MPlayer-users] Why no security advisory for CVE-2008-3827
Reimar Döffinger
Reimar.Doeffinger at stud.uni-karlsruhe.de
Sun Oct 12 17:35:50 CEST 2008
On Sun, Oct 12, 2008 at 04:52:27PM +0200, Reimar Döffinger wrote:
> On Sun, Oct 12, 2008 at 02:18:48PM +0200, Manuel Reimer wrote:
> > Loren Merritt wrote:
> > > Did you miss the part in the very page you linked which says the bug was
> > > fixed before the CERT was published, and links to the commit?
> >
> > And so it's my job to backport this commit to get it to work with
> > Mplayer 1.0 RC2?
>
> It should apply flawlessly, if not I can make and upload a modified patch somewhere.
Btw. there is the no-promises-but-we-might-remember-to-apply-patches-with-CVEs release
branch:
svn co svn://svn.mplayerhq.hu/mplayer/branches/1.0rc2/
and that patch indeed applied flawlessly.
More information about the MPlayer-users
mailing list