On Sat, 11 Oct 2008, Manuel Reimer wrote: > some days ago the following link was posted around several news services: > > http://www.ocert.org/advisories/ocert-2008-013.html > > So far there is *no* information about this hole on the mplayer homepage > and there seems to be even no official patch for the hole. Did you miss the part in the very page you linked which says the bug was fixed before the CERT was published, and links to the commit? Or do you expect us to release a new official binary every time some bug gets fixed? --Loren Merritt
