autotools/ltmain.sh | 14 14 + 0 - 0 !
1 file changed, 14 insertions(+)

 fix incorrect argument reordering
Bug-Debian: http://bugs.debian.org/347650

modules/misc/notify/notify.c | 9 1 + 8 - 0 !
1 file changed, 1 insertion(+), 8 deletions(-)

 fix upstream code. reflect the new path.

modules/video_filter/osdmenu.c | 2 1 + 1 - 0 !
share/osdmenu/default.cfg | 2 1 + 1 - 0 !
2 files changed, 2 insertions(+), 2 deletions(-)

 use the installed files for osdmenu rather than the ones in the
 current dir.

config.h.in | 3 3 + 0 - 0 !
configure.ac | 45 26 + 19 - 0 !
projects/mozilla/Makefile.am | 3 2 + 1 - 0 !
projects/mozilla/control/npolibvlc.cpp | 21 13 + 8 - 0 !
projects/mozilla/control/nporuntime.cpp | 11 8 + 3 - 0 !
projects/mozilla/support/npmac.cpp | 189 90 + 99 - 0 !
projects/mozilla/support/npunix.c | 7 4 + 3 - 0 !
projects/mozilla/support/npwin.cpp | 14 9 + 5 - 0 !
projects/mozilla/vlcplugin.cpp | 25 11 + 14 - 0 !
projects/mozilla/vlcplugin.h | 27 3 + 24 - 0 !
projects/mozilla/vlcshell.cpp | 27 6 + 21 - 0 !
projects/mozilla/vlcshell.h | 23 0 + 23 - 0 !
12 files changed, 175 insertions(+), 220 deletions(-)

 make vlc compatible with xulrunner 1.9.1

Makefile.in | 1 0 + 1 - 0 !
aclocal.m4 | 62 31 + 31 - 0 !
bin/Makefile.in | 1 0 + 1 - 0 !
compat/Makefile.in | 1 0 + 1 - 0 !
configure | 6200 3063 + 3137 - 0 !
doc/Makefile.in | 1 0 + 1 - 0 !
extras/package/ipkg/Makefile.in | 1 0 + 1 - 0 !
libs/loader/Makefile.in | 1 0 + 1 - 0 !
libs/srtp/Makefile.in | 1 0 + 1 - 0 !
libs/unzip/Makefile.in | 1 0 + 1 - 0 !
m4/Makefile.in | 1 0 + 1 - 0 !
modules/3dnow/Makefile.in | 1 0 + 1 - 0 !
modules/Makefile.in | 1 0 + 1 - 0 !
modules/access/Makefile.in | 1 0 + 1 - 0 !
modules/access/bd/Makefile.in | 1 0 + 1 - 0 !
modules/access/bda/Makefile.in | 1 0 + 1 - 0 !
modules/access/dshow/Makefile.in | 1 0 + 1 - 0 !
modules/access/dvb/Makefile.in | 1 0 + 1 - 0 !
modules/access/mms/Makefile.in | 1 0 + 1 - 0 !
modules/access/rtp/Makefile.in | 1 0 + 1 - 0 !
modules/access/rtsp/Makefile.in | 1 0 + 1 - 0 !
modules/access/screen/Makefile.in | 1 0 + 1 - 0 !
modules/access/vcd/Makefile.in | 1 0 + 1 - 0 !
modules/access/vcdx/Makefile.in | 1 0 + 1 - 0 !
modules/access/zip/Makefile.in | 1 0 + 1 - 0 !
modules/access_output/Makefile.in | 1 0 + 1 - 0 !
modules/altivec/Makefile.in | 1 0 + 1 - 0 !
modules/arm_neon/Makefile.in | 1 0 + 1 - 0 !
modules/audio_filter/Makefile.in | 1 0 + 1 - 0 !
modules/audio_filter/channel_mixer/Makefile.in | 1 0 + 1 - 0 !
modules/audio_filter/converter/Makefile.in | 1 0 + 1 - 0 !
modules/audio_filter/resampler/Makefile.in | 1 0 + 1 - 0 !
modules/audio_filter/spatializer/Makefile.in | 1 0 + 1 - 0 !
modules/audio_mixer/Makefile.in | 1 0 + 1 - 0 !
modules/audio_output/Makefile.in | 1 0 + 1 - 0 !
modules/codec/Makefile.in | 1 0 + 1 - 0 !
modules/codec/avcodec/Makefile.in | 1 0 + 1 - 0 !
modules/codec/dmo/Makefile.in | 1 0 + 1 - 0 !
modules/codec/omxil/Makefile.in | 1 0 + 1 - 0 !
modules/codec/shine/Makefile.in | 1 0 + 1 - 0 !
modules/codec/spudec/Makefile.in | 1 0 + 1 - 0 !
modules/codec/subtitles/Makefile.in | 1 0 + 1 - 0 !
modules/codec/wmafixed/Makefile.in | 1 0 + 1 - 0 !
modules/control/Makefile.in | 1 0 + 1 - 0 !
modules/control/globalhotkeys/Makefile.in | 1 0 + 1 - 0 !
modules/control/http/Makefile.in | 1 0 + 1 - 0 !
modules/demux/Makefile.in | 1 0 + 1 - 0 !
modules/demux/asf/Makefile.in | 1 0 + 1 - 0 !
modules/demux/avformat/Makefile.in | 1 0 + 1 - 0 !
modules/demux/avi/Makefile.in | 1 0 + 1 - 0 !
modules/demux/mkv/Makefile.in | 1 0 + 1 - 0 !
modules/demux/mp4/Makefile.in | 1 0 + 1 - 0 !
modules/demux/mpeg/Makefile.in | 1 0 + 1 - 0 !
modules/demux/playlist/Makefile.in | 1 0 + 1 - 0 !
modules/gui/Makefile.in | 1 0 + 1 - 0 !
modules/gui/hildon/Makefile.in | 1 0 + 1 - 0 !
modules/gui/macosx/Makefile.in | 1 0 + 1 - 0 !
modules/gui/macosx_dialog_provider/Makefile.in | 1 0 + 1 - 0 !
modules/gui/minimal_macosx/Makefile.in | 1 0 + 1 - 0 !
modules/gui/qt4/Makefile.in | 1 0 + 1 - 0 !
modules/gui/skins2/Makefile.in | 1 0 + 1 - 0 !
modules/meta_engine/Makefile.in | 1 0 + 1 - 0 !
modules/misc/Makefile.in | 1 0 + 1 - 0 !
modules/misc/dummy/Makefile.in | 1 0 + 1 - 0 !
modules/misc/lua/Makefile.in | 1 0 + 1 - 0 !
modules/misc/notify/Makefile.in | 1 0 + 1 - 0 !
modules/misc/osd/Makefile.in | 1 0 + 1 - 0 !
modules/misc/playlist/Makefile.in | 1 0 + 1 - 0 !
modules/misc/stats/Makefile.in | 1 0 + 1 - 0 !
modules/misc/xml/Makefile.in | 1 0 + 1 - 0 !
modules/mmx/Makefile.in | 1 0 + 1 - 0 !
modules/mmxext/Makefile.in | 1 0 + 1 - 0 !
modules/mux/Makefile.in | 1 0 + 1 - 0 !
modules/mux/mpeg/Makefile.in | 1 0 + 1 - 0 !
modules/packetizer/Makefile.in | 1 0 + 1 - 0 !
modules/services_discovery/Makefile.in | 1 0 + 1 - 0 !
modules/sse2/Makefile.in | 1 0 + 1 - 0 !
modules/stream_filter/Makefile.in | 1 0 + 1 - 0 !
modules/stream_out/Makefile.in | 1 0 + 1 - 0 !
modules/stream_out/transcode/Makefile.in | 1 0 + 1 - 0 !
modules/video_chroma/Makefile.in | 1 0 + 1 - 0 !
modules/video_filter/Makefile.in | 1 0 + 1 - 0 !
modules/video_filter/dynamicoverlay/Makefile.in | 1 0 + 1 - 0 !
modules/video_output/Makefile.in | 1 0 + 1 - 0 !
modules/video_output/msw/Makefile.in | 1 0 + 1 - 0 !
modules/visualization/Makefile.in | 1 0 + 1 - 0 !
modules/visualization/visual/Makefile.in | 1 0 + 1 - 0 !
projects/activex/Makefile.in | 1 0 + 1 - 0 !
projects/mozilla/Makefile.in | 4 2 + 2 - 0 !
share/Makefile.in | 1 0 + 1 - 0 !
src/Makefile.in | 1 0 + 1 - 0 !
src/test/Makefile.in | 1 0 + 1 - 0 !
test/Makefile.in | 1 0 + 1 - 0 !
93 files changed, 3096 insertions(+), 3260 deletions(-)

 run autoreconf to pickup configure.ac and makefile.am changes

modules/demux/real.c | 21 11 + 10 - 0 !
1 file changed, 11 insertions(+), 10 deletions(-)

 real: fix heap buffer overflow (cve-2010-3907)
 Malformatted files may have a zero i_subpackets value. In this case,
 we cannot use the array, but we still have to free it (calloc(0)).

modules/codec/cdg.c | 12 9 + 3 - 0 !
1 file changed, 9 insertions(+), 3 deletions(-)

 fix heap overflows in cdg decoder
 This patch resolves two heap corruption vulnerabilities in the CDG
 decoder for VLC media player.  In both cases, a failure to properly
 validate indexes into statically-sized arrays on the heap could allow a
 maliciously crafted CDG video to corrupt the heap in a controlled
 manner, potentially leading to code execution.
 .
 The patch is against v1.1.5 from vlc git, but this decoder hasn't been
 touched in awhile, so I'd expect it to cleanly apply to older versions.
 I've tested it and confirmed it resolves the heap corruption issues and
 does not break functionality.

modules/codec/subtitles/subsdec.c | 3 3 + 0 - 0 !
modules/codec/subtitles/subsusf.c | 3 3 + 0 - 0 !
2 files changed, 6 insertions(+)

 handle early termination properly in striptags

modules/demux/mkv/mkv.hpp | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 the id could be ok but the class mismatching

src/video_output/video_output.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 [patch] consider too large width/height as invalid.

Idea taken from ebced314439f16e0d4dd8406ed0488f1677fa65f in master

modules/demux/mp4/libmp4.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 upstream changes introduced in version 1.1.3-1squeeze5
 This patch has been created by dpkg-source during the package build.
 Here's the last changelog entry, hopefully it gives details on why
 those changes were made:
 .
 vlc (1.1.3-1squeeze5) stable-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix heap-based buffer overflow in mp4 decoder, VideoLAN-SA-1103.
 .
 The person named in the Author field signed this changelog entry.

modules/demux/playlist/xspf.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---