[vdr] xine-lib security fix (was: Re: VDR - xine - CoreAVC)

Darren Salt linux at youmustbejoking.demon.co.uk
Mon Jan 21 15:48:05 CET 2008


I demand that Per Mellander may or may not have written...

> Morfsta skrev:
>> I have been using xine-1.2 from the Mercurial distribution, but it still
>> creates a plugin directory called 1.1.9 and sometimes 1.1.90.

> Evereything except that you use Mercurial looks like my setup. I started of
> with the xine-lib I had on my machine, which was originally taken from
> Reinhards xine-site. ( http://home.vrweb.de/~rnissl )

If you use Real streams with xine-lib, DO NOT USE THOSE SNAPSHOTS (until
they're updated); instead, download and use xine-lib 1.1.9.1 or current hg.
(Ref. CVE-2008-0225.)

(My Debian repository has 1.1.9.1.)

[snip]
-- 
| Darren Salt    | linux or ds at              | nr. Ashington, | Toon
| RISC OS, Linux | youmustbejoking,demon,co,uk | Northumberland | Army
|   <URL:http://www.youmustbejoking.demon.co.uk/> (PGP 2.6, GPG keys)

The name is Borg. James Borg.



More information about the vdr mailing list