[Secure-testing-team] security issue in libfaad2
Nico Golde
nico at ngolde.de
Wed Dec 3 21:15:27 UTC 2008
Hi,
* Menno Bakker <info at audiocoding.com> [2008-12-03 22:09]:
> This security fix does not apply to any of those applications, unless
> they made their own security bugs :P
> The fix only applied to the FAAD2 frontend, so it is not in the actual
> decoding library.
I am aware of the issue you are talking about but this is
CVE-2008-4201 which is different. The issue I was talking
about is a crash for http://sam.zoy.org/zzuf/lol-mplayer.aac
(not related to the frontend) which doesn't crash since
2.6.1 anymore.
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20081203/3a57197e/attachment.pgp
More information about the Secure-testing-team
mailing list