Mit der Version 1.2.2 haben die Entwickler des freien Open-Source MPEG4-ASP Video-Codecs XviD unter anderem zwei potentielle Sicherheitslücken geschlossen, so dass ein Update empfohlen wird.
<blockquote><strong>Changes since 1.2.1:</strong>
xvidcore library
<blockquote>* Workaround for nasm bug with Mach-O/OSX target
* Fix for missing resync marker range check (reported by IBM X-Force. Thanks go to John McDonald and Christopher Valasek)
* Improved precision for RGB<->YUV conversions
* Fix for potential RGB24 access violation
* Updated compiler options for Apple PPC target
* Fixed MSVC6 projects to work for path names with spaces</blockquote>
VFW frontend
<blockquote>* Updated mingw makefile </blockquote>
DShow frontend
<blockquote>* Bugfix for wrong handling of xvidcore XVID_ERR_MEMORY return code (reported by IBM X-Force. Thanks to John McDonald and Mark Dowd)</blockquote></blockquote>
<b>Download:</b> <ul><li><a href="http://www.planet3dnow.de/cgi-bin/file/get.cgi?20090614100423">XviD 1.2.2 Video-Codec "Koepi's" [Windows]</a></li><li><a href="http://www.xvid.org/Downloads.43.0.html" target="b">XviD 1.2.2 Quelltext</a></li></ul>
<b>Links zum Thema:</b>
<ul><li><a href="http://www.xvid.org/Home-of-the-Xvid-Codec.1.0.html" target="b">Xvid.org</a></li></ul>
Dank an nebula für den Hinweis.