Skip to content
Commit 2ec6b8b3 authored by Mahyar Koshkouei's avatar Mahyar Koshkouei Committed by Peter Korsgaard
Browse files

mpv: security bump to 0.27.2 



Fixes CVE-2018-6360: mpv through 0.28.0 allows remote attackers to execute
arbitrary code via a crafted web site, because it reads HTML documents
containing VIDEO elements, and accepts arbitrary URLs in a src attribute
without a protocol whitelist.

[Peter: Add CVE description]
Signed-off-by: default avatarMahyar Koshkouei <mahyar.koshkouei@gmail.com>
Signed-off-by: default avatarPeter Korsgaard <peter@korsgaard.com>
parent 52cec04a
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment