Commit 16252024 authored Jun 17, 2014 by Gustavo Zacarias Committed by Peter Korsgaard Jun 18, 2014

vlc: security bump to version 2.1.4



Fixes CVE-2014-1684: The ASF_ReadObject_file_properties function in
modules/demux/asf/libasf.c in the ASF Demuxer in VideoLAN VLC Media
Player before 2.1.3 allows remote attackers to cause a denial of service
(divide-by-zero error and crash) via a zero minimum and maximum data
packet size in an ASF file.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

parent cb1dc211

package/vlc/vlc.mk

+1 −1

Original line number	Diff line number	Diff line
		@@ -4,7 +4,7 @@
		#
		################################################################################

		VLC_VERSION = 2.1.2
		VLC_VERSION = 2.1.4
		VLC_SITE = http://download.videolan.org/pub/videolan/vlc/$(VLC_VERSION)
		VLC_SOURCE = vlc-$(VLC_VERSION).tar.xz
		VLC_LICENSE = GPLv2+ LGPLv2.1+