Author: gilbert-guest Date: 2009-04-20 02:35:22 +0000 (Mon, 20 Apr 2009) New Revision: 11656 Modified: data/CVE/list Log: CVE-2009-0385 does not affect xine-lib; this was a mistake in the upstream changelog that propagated into a fedora security announcement as well (see bug report for more details) Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-04-20 02:09:18 UTC (rev 11655) +++ data/CVE/list 2009-04-20 02:35:22 UTC (rev 11656) @@ -3970,7 +3970,6 @@ - ffmpeg-debian 0.svn20080206-16 (medium; bug #524799) - ffmpeg <removed> - mplayer 1.0~rc2-14 (medium; bug #524805) - - xine-lib <unfixed> (medium; bug #523475) NOTE: MPlayer links against libavformat since 1.0~rc2-14, etch Mplayer still needs a fix NOTE: http://git.ffmpeg.org/?p=ffmpeg;a=commitdiff;h=72e715fb798f2cb79fd24a6d2eaeafb7c6eeda17 CVE-2009-0318 (Untrusted search path vulnerability in the GObject Python interpreter ...)