Articles / Debian: New vlc packages fi…

Debian: New vlc packages fix several vulnerabilities

Luigi Auriemma, Alin Rad Pop, Rémi Denis-Courmont, Quovodis, Guido Landi, Felipe Manzano, Anibal Sacco and others discovered multiple vulnerabilities in vlc, an application for playback and streaming of audio and video. In the worst case, these weaknesses permit a remote, unauthenticated attacker to execute arbitrary code with the privileges of the user running vlc. A buffer overflow vulnerability in subtitle handling allows an attacker to execute arbitrary code through the opening of a maliciously crafted MicroDVD, SSA or Vplayer file. A format string vulnerability in the HTTP-based remote control facility of the vlc application allows a remote, unauthenticated attacker to execute arbitrary code. Insecure argument validation allows a remote attacker to overwrite arbitrary files writable by the user running vlc, if a maliciously crafted M3U playlist or MP3 audio file is opened. Heap buffer overflows in RTSP stream and session description protocol (SDP) handling allow an attacker to execute arbitrary code if a maliciously-crafted RTSP stream is played. Insufficient integer bounds checking in SDP handling allows the execution of arbitrary code through a maliciously crafted SDP stream ID parameter in an RTSP stream. Insufficient integrity checking in the MP4 demuxer allows a remote attacker to overwrite arbitrary memory and execute arbitrary code if a maliciously-crafted MP4 file is opened. An integer overflow vulnerability in MP4 handling allows a remote attacker to cause a heap buffer overflow, inducing a crash and possibly the execution of arbitrary code if a maliciously-crafted MP4 file is opened. Fixed packages are available from security.debian.org.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
Debian Security Advisory DSA-1543-1                  security@debian.org
http://www.debian.org/security/                           Devin Carraway
April 09, 2008                        http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package        : vlc
Vulnerability  : multiple
Problem type   : remote
Debian-specific: no
CVE Id(s)      : CVE-2007-6681 CVE-2007-6682 CVE-2007-6683 CVE-2008-0295
                CVE-2008-0296 CVE-2008-0073 CVE-2008-0984 CVE-2008-1489

Luigi Auriemma, Alin Rad Pop, Rémi Denis-Courmont, Quovodis, Guido
Landi, Felipe Manzano, Anibal Sacco and others discovered multiple
vulnerabilities in vlc, an application for playback and streaming of
audio and video.  In the worst case, these weaknesses permit a remote,
unauthenticated attacker to execute arbitrary code with the privileges
of the user running vlc.

The Common Vulnerabilities and Exposures project identifies the
following eight problems:

CVE-2007-6681

   A buffer overflow vulnerability in subtitle handling allows an
   attacker to execute arbitrary code through the opening of a
   maliciously crafted MicroDVD, SSA or Vplayer file.

CVE-2007-6682

   A format string vulnerability in the HTTP-based remote control
   facility of the vlc application allows a remote, unauthenticated
   attacker to execute arbitrary code.

CVE-2007-6683

   Insecure argument validation allows a remote attacker to overwrite
   arbitrary files writable by the user running vlc, if a maliciously
   crafted M3U playlist or MP3 audio file is opened.

CVE-2008-0295, CVE-2008-0296

   Heap buffer overflows in RTSP stream and session description
   protocol (SDP) handling allow an attacker to execute arbitrary
   code if a maliciously-crafted RTSP stream is played.

CVE-2008-0073

   Insufficient integer bounds checking in SDP handling allows the
   execution of arbitrary code through a maliciously crafted SDP
   stream ID parameter in an RTSP stream.

CVE-2008-0984

   Insufficient integrity checking in the MP4 demuxer allows a remote
   attacker to overwrite arbitrary memory and execute arbitrary code
   if a maliciously-crafted MP4 file is opened.

CVE-2008-1489

   An integer overflow vulnerability in MP4 handling allows a remote
   attacker to cause a heap buffer overflow, inducing a crash and
   possibly the execution of arbitrary code if a maliciously-crafted
   MP4 file is opened.

For the stable distribution (etch), these problems have been fixed in
version 0.8.6-svn20061012.debian-5.1+etch2.

For the unstable distribution (sid), these problems have been fixed in
version 0.6.8.e-2.

We recommend that you upgrade your vlc packages.

Upgrade instructions
- --------------------

wget url
       will fetch the file for you
dpkg -i file.deb
       will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
       will update the internal database
apt-get upgrade
       will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian 4.0 (stable)
- -------------------

Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

Source archives:

 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2.diff.gz
   Size/MD5 checksum:  2383751 4429c3a0764cadf7bdcb67a90bdd5cac
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian.orig.tar.gz
   Size/MD5 checksum: 15168393 30c18a2fdc4105606033ff6e6aeab81c
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2.dsc
   Size/MD5 checksum:     2614 6337a0f1aa8c1f4b1a98648d66c55c7f

Architecture independent packages:

 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-alsa_0.8.6-svn20061012.debian-5.1+etch2_all.deb
   Size/MD5 checksum:      784 0eb16d5cb4300c269d767d8efcf6fd56
 http://security.debian.org/pool/updates/main/v/vlc/wxvlc_0.8.6-svn20061012.debian-5.1+etch2_all.deb
   Size/MD5 checksum:      778 6e2045ca43d51b8d8651640405c6e501

alpha architecture (DEC Alpha)

 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_alpha.deb
   Size/MD5 checksum:    13048 2dde2077d6c6b6b62760db79420e1964
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_alpha.deb
   Size/MD5 checksum:     4442 4efa89adf58bc5b546e6cd039ba09220
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_alpha.deb
   Size/MD5 checksum:    19970 ca201d67fe04a84a6383ccd02bb8b605
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_alpha.deb
   Size/MD5 checksum:    40322 4d0ce0d3d9f6b1915057d78a0785b143
 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_alpha.deb
   Size/MD5 checksum:  5177304 744b30a6fd7ef97b628c552498548497
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_alpha.deb
   Size/MD5 checksum:     5022 c3b741230821c5d659d1f1266b03aa15
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_alpha.deb
   Size/MD5 checksum:  1157508 c98bf642658359cd96ae1feb1c0f0554
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_alpha.deb
   Size/MD5 checksum:  1307404 c3d2226ae485e006942fd1f702d02e33
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_alpha.deb
   Size/MD5 checksum:     6936 602249848f8d85444381ad3b05249c61

amd64 architecture (AMD x86_64 (AMD64))

 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb
   Size/MD5 checksum:     4186 358a9c42de2f15e0050630ce8db82f49
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb
   Size/MD5 checksum:     4518 81e7edd9360bc8718f4e50c068aa5e2e
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb
   Size/MD5 checksum:  1144080 86f1045c52f86d0072e62c7bc4710961
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb
   Size/MD5 checksum:    20190 26a4e777b60bab308122f54a121571ed
 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb
   Size/MD5 checksum:  4665850 754a2eea305e438ca4ea530baccb41f6
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb
   Size/MD5 checksum:     6052 4761ccae31f7fb91df097ae02d1db13b
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb
   Size/MD5 checksum:    36768 15815cd72ec44625960f56121fbdd163
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb
   Size/MD5 checksum:    11330 19e27b3dcc17d19d40c63a424ffb3b74
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_amd64.deb
   Size/MD5 checksum:   951086 6a43d0f74f693ea25a5e96e76b9cbe5b

arm architecture (ARM)

 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_arm.deb
   Size/MD5 checksum:  1268066 02da0972696750201f1b4edea59bf902
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_arm.deb
   Size/MD5 checksum:     6102 eb452de9bf1f548170b4d4772f3e1d8c
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_arm.deb
   Size/MD5 checksum:    20034 1a75d857a80a57042a05da96528947e4
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_arm.deb
   Size/MD5 checksum:    33322 d255b25f957424b69cbf3cd14c9f6027
 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_arm.deb
   Size/MD5 checksum:  4734674 d80973f148a42666859771092bc66d53
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_arm.deb
   Size/MD5 checksum:     4210 4ca63149485e881e9327b826bd7f4fb7
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_arm.deb
   Size/MD5 checksum:   998936 809bafbe7249543ea1dcac9c39e28814
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_arm.deb
   Size/MD5 checksum:     5586 59dbd1c633375ef1ca6bbdd110b32103
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_arm.deb
   Size/MD5 checksum:    10806 7b692bcdb8ba8289a1bf3770f5deb019

hppa architecture (HP PA RISC)

 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_hppa.deb
   Size/MD5 checksum:    13748 024e3a2176324596213dc46604a3544d
 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_hppa.deb
   Size/MD5 checksum:  5231084 ac7073a0035ee2427a9db4b490ea4ee7
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_hppa.deb
   Size/MD5 checksum:  1084424 c8756e64fb1e5e7aaafb78844c698ea8
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_hppa.deb
   Size/MD5 checksum:    46664 2b320178feb2bbbae07659b0999ad728
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_hppa.deb
   Size/MD5 checksum:  1374206 3a444f5aeebbfe8c0bf3a44351753227
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_hppa.deb
   Size/MD5 checksum:     6960 d83669890e1a6359a7543c81245558f5
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_hppa.deb
   Size/MD5 checksum:     5360 fc5f122f3e2e62e56b6d2bca5ceedac5
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_hppa.deb
   Size/MD5 checksum:    20136 8cc0b29360f4c14fe7e6d67dabe6fb6b
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_hppa.deb
   Size/MD5 checksum:     7792 d5644b71b9d5e0576f465615e19e59cc

i386 architecture (Intel ia32)

 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:     4106 8c02653af9311594966affefa77a8d1d
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:    20184 e9561fd52a2621b8aeb90fc2f84952ef
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:   957988 5e8bfccc97aec6801d4e91f7f79190ad
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-svgalib_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:     4540 f79b718bb0fb3c959e10a1f0e19c82b2
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:     5844 00dc67fdbfe9757623839055df9da79b
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:     4818 129657185fbe2d7afc776d3081de6d1b
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:    10716 558734e32098ae9dcf9a0e4f8d17b9ad
 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:  4626988 2be57767012d22087957e5821fc5f039
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:  1137658 0d1565969274d720665bd260bf985448
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-glide_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:     4138 0c4017ad5d34eef96b28cdd24125b7b2
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_i386.deb
   Size/MD5 checksum:    36188 a51e365e9eab11dc6495ea638b07ff04

ia64 architecture (Intel ia64)

 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_ia64.deb
   Size/MD5 checksum:     5446 4bd7a8aa9ffdeeb92af617e01f34c8a8
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_ia64.deb
   Size/MD5 checksum:  1568906 05044a1e508e84db111ee0ee3d85b675
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_ia64.deb
   Size/MD5 checksum:    49108 d9f76b5ab3d4c8e44bae8b9f1bff68f0
 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_ia64.deb
   Size/MD5 checksum:  5904342 16fe4a1010b0195f27eb7b2360269dfd
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_ia64.deb
   Size/MD5 checksum:     9098 965e4b181f3d9e74279e7156d11988c7
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_ia64.deb
   Size/MD5 checksum:    20132 ec05ce0fa6d022222d2e9f89fc087205
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_ia64.deb
   Size/MD5 checksum:  1459208 3d549b3d18833d33e6cb374aa3b3a3e6
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_ia64.deb
   Size/MD5 checksum:     6206 774a31208c986344fce6de1e9166e6a3
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_ia64.deb
   Size/MD5 checksum:    17186 542b1bb71909328529927bcfc3f8bf9f

mips architecture (MIPS (Big Endian))

 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_mips.deb
   Size/MD5 checksum:  4992336 567d501ec4e4fabc1abd96c37f72e5c2
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_mips.deb
   Size/MD5 checksum:    20048 8b5df3829a534020689e46a1ec9d90ad
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_mips.deb
   Size/MD5 checksum:     4486 03de077e7343083d1acaf68933e50e63
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_mips.deb
   Size/MD5 checksum:     5964 1582ee4ea7a632707b154375b154f589
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_mips.deb
   Size/MD5 checksum:    35576 057e1c1e7c3fe40a559412fe0dc15993
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_mips.deb
   Size/MD5 checksum:  1109938 27ecbceeb56f8252169f8cb5a0965bec
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_mips.deb
   Size/MD5 checksum:    12276 f4271076704b885cdba3ddc4ea13af54
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_mips.deb
   Size/MD5 checksum:     6846 0fba8c551a00e996d7180b594d036ce1
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_mips.deb
   Size/MD5 checksum:  1005576 cda98754f16880c860ba4dfb0e2f5d84

mipsel architecture (MIPS (Little Endian))

 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_mipsel.deb
   Size/MD5 checksum:  1005628 cc8284dc0e2c37a8cb8d5f7b3905ab67
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_mipsel.deb
   Size/MD5 checksum:    11948 f60b93957001af64b98a5ad0711e5cf7
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_mipsel.deb
   Size/MD5 checksum:    34618 13fc079120bae335d89eb33b92f52940
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_mipsel.deb
   Size/MD5 checksum:    20140 70191b75acf2eb4c58c34d1b8be591c1
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_mipsel.deb
   Size/MD5 checksum:   922612 54bfaf3c3eb3b19f0714d8b0de5237b7
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_mipsel.deb
   Size/MD5 checksum:     5918 8e7edf87b7f3fbbf00286e6fa9c360d3
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_mipsel.deb
   Size/MD5 checksum:     4480 9fa80f663454ed8fb808849b2290fa1d
 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_mipsel.deb
   Size/MD5 checksum:  4667782 3679f996505b29854f3b03bd13e96b93
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_mipsel.deb
   Size/MD5 checksum:     6714 74b0c49a181154ac26d1efed613e4d91

powerpc architecture (PowerPC)

 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_powerpc.deb
   Size/MD5 checksum:  1020782 e46bfa0668b50ebf34259c7e990276dd
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_powerpc.deb
   Size/MD5 checksum:    20196 5e8a83fd4e825527c8be82e0e2a66c74
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_powerpc.deb
   Size/MD5 checksum:     7976 b55ac0427e5d4d2816fa7b9f15669b3f
 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_powerpc.deb
   Size/MD5 checksum:  5098930 fee368e3868bcad1d587eba8bdb0193e
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_powerpc.deb
   Size/MD5 checksum:    38238 af84ad7b77101b7a45462283b455d4c1
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_powerpc.deb
   Size/MD5 checksum:     6906 cd462e598e15d3f2147eb1eb224679ec
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_powerpc.deb
   Size/MD5 checksum:    13674 99248778e655e23ffa52ed41a496c9ab
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_powerpc.deb
   Size/MD5 checksum:     5624 a506a0cb520dd7b9c9bcd1ed999a30ba
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_powerpc.deb
   Size/MD5 checksum:  1188886 69ffa9a6f4a0d90e54bf5764974f6035

s390 architecture (IBM S/390)

 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_s390.deb
   Size/MD5 checksum:    20130 bc0e62799b86a7bfbeedfc7864f398d1
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_s390.deb
   Size/MD5 checksum:  1172960 cc56ced14c4ee3d5d22062f93c436329
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_s390.deb
   Size/MD5 checksum:    11412 ea595a287d20d338299f24f710c0573b
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_s390.deb
   Size/MD5 checksum:    38334 85cd8a72aa36ac5f26be3ee5750d3067
 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_s390.deb
   Size/MD5 checksum:  4860002 b89b90d7d86c4a3fcf3dccc078076ccb
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_s390.deb
   Size/MD5 checksum:     6052 e7c83a80acf31a651d52a4d5f5fe7e9a
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_s390.deb
   Size/MD5 checksum:     6324 d55ec88b0ad7f013bfa98092dab0cfcb
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_s390.deb
   Size/MD5 checksum:  1019244 c251ec27920487c738f8cf066cc68a1e
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_s390.deb
   Size/MD5 checksum:     4298 220d422067ce6afa11b7d9ad59c2d2a9

sparc architecture (Sun SPARC/UltraSPARC)

 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-ggi_0.8.6-svn20061012.debian-5.1+etch2_sparc.deb
   Size/MD5 checksum:     5750 3e7afff7945c3e8c0d47028f796d3db7
 http://security.debian.org/pool/updates/main/v/vlc/vlc_0.8.6-svn20061012.debian-5.1+etch2_sparc.deb
   Size/MD5 checksum:  1189608 98626258ae677dc1377d125d3a9561f6
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-sdl_0.8.6-svn20061012.debian-5.1+etch2_sparc.deb
   Size/MD5 checksum:    10402 093498ebe1f1cf92c11c14c76e8103a7
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-arts_0.8.6-svn20061012.debian-5.1+etch2_sparc.deb
   Size/MD5 checksum:     3920 6424651bd9f7e1dc02b32f54405102c6
 http://security.debian.org/pool/updates/main/v/vlc/vlc-nox_0.8.6-svn20061012.debian-5.1+etch2_sparc.deb
   Size/MD5 checksum:  4660246 e140b92e49e8696cf8f8e79fd3602db3
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0-dev_0.8.6-svn20061012.debian-5.1+etch2_sparc.deb
   Size/MD5 checksum:    20132 aa1be17dfad7343c6e9f0529994a5780
 http://security.debian.org/pool/updates/main/v/vlc/mozilla-plugin-vlc_0.8.6-svn20061012.debian-5.1+etch2_sparc.deb
   Size/MD5 checksum:    33300 a8780853e4bafa376731ba0bca0badbf
 http://security.debian.org/pool/updates/main/v/vlc/vlc-plugin-esd_0.8.6-svn20061012.debian-5.1+etch2_sparc.deb
   Size/MD5 checksum:     4752 bceca30ee766bad0fad02a43bc869f8a
 http://security.debian.org/pool/updates/main/v/vlc/libvlc0_0.8.6-svn20061012.debian-5.1+etch2_sparc.deb
   Size/MD5 checksum:   950520 02d9f43b9b116abc2836db2bf55cfc64


 These files will probably be moved into the stable distribution on
 its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFH/RgdXm3vHE4uyloRAvWBAJ9nhmUNYheW+e9r7jRR4jWIGsn1WwCeKTmv
1fuafqc2aByfuKDgx6flj1k=
=PPdE
-----END PGP SIGNATURE-----

Screenshot

Project Spotlight

Kigo Video Converter Ultimate for Mac

A tool for converting and editing videos.

Screenshot

Project Spotlight

Kid3

An efficient tagger for MP3, Ogg/Vorbis, and FLAC files.