2ec6b8b31e
Fixes CVE-2018-6360: mpv through 0.28.0 allows remote attackers to execute arbitrary code via a crafted web site, because it reads HTML documents containing VIDEO elements, and accepts arbitrary URLs in a src attribute without a protocol whitelist. [Peter: Add CVE description] Signed-off-by: Mahyar Koshkouei <mahyar.koshkouei@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
||
|---|---|---|
| .. | ||
| 0001-wscript-don-t-check-for-fork-on-POSIX-checks.patch | ||
| 0002-fix-powerpc64-altivec.patch | ||
| 0003-rpi-fix-linking-errors.patch | ||
| 0004-libva20.patch | ||
| Config.in | ||
| mpv.hash | ||
| mpv.mk | ||