CVE-2016-2399 Integer overflow in the quicktime_read_pascal function in libquicktime 1.2.4 and earlier allows remote attackers to cause a denial of service or possibly have other unspecified impact via a crafted hdlr MP4 atom. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855099 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2399
amd64 stable
x86 stable
ia64 stable
ppc ppc64 stable.
Stable for HPPA.
sparc stable
Stable on alpha.
Arches, Thank you for your work. GLSA Vote: No Maintainer(s), please drop the vulnerable version(s).
Repository is clean, all done.