[Bug 318555] Re: Amarok - integer overflows and unchecked allocation vulnerabilities

feranick Wed, 13 May 2009 16:11:00 -0700

This bug is fixed in amarok (2:1.4.9.1-0ubuntu3.2) - generic hardy.
Hardy for the mini is still in version 2:1.4.9.1-0ubuntu3.1


 amarok (2:1.4.9.1-0ubuntu3.2)  hardy-security; urgency=low

  * SECURITY UPDATE: integer overflows allow remote attackers to execute
    arbitrary code via an Audible Audio (.aa) file (LP: #318555)
    - debian/patches/security_audible_tags.diff fix integer overflow while
      reading audible aa file tags. Based on upstream patch.
    - http://websvn.kde.org/?view=rev&revision=908415
    - http://www.trapkit.de/advisories/TKADV2009-002.txt
    - CVE-2009-0135
    - CVE-2009-0136

-- 
Amarok - integer overflows and unchecked allocation vulnerabilities
https://bugs.launchpad.net/bugs/318555
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 318555] Re: Amarok - integer overflows and unchecked allocation vulnerabilities

Reply via email to