[Bug 370031] Re: Integer signedness error in the store_id3_text function in the ID3v2 code in mpg123 before 1.7.2 allows remote attackers to cause a denial of service (out-of-bounds memory access) and possibly execute arbitrary code
Jamie Strandboge
jamie at ubuntu.com
Fri May 1 20:40:28 UTC 2009
The patches themselves look good. I've uploaded hardy-jaunty to the
security PPA. I can publish these and karmic once I get feedback on
testing.
BTW-- the Dapper task was mark 'Invalid', does this issue not affect
Dapper?
** Changed in: mpg123 (Ubuntu Hardy)
Status: In Progress => Fix Committed
** Changed in: mpg123 (Ubuntu Intrepid)
Status: In Progress => Fix Committed
** Changed in: mpg123 (Ubuntu Jaunty)
Status: In Progress => Fix Committed
--
Integer signedness error in the store_id3_text function in the ID3v2 code in mpg123 before 1.7.2 allows remote attackers to cause a denial of service (out-of-bounds memory access) and possibly execute arbitrary code
https://bugs.launchpad.net/bugs/370031
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list