Accepted kaffeine 0.7.1-1.3ubuntu6 (source)
Jonathan Riddell
jriddell at ubuntu.com
Thu Apr 6 11:45:06 BST 2006
Accepted:
OK: kaffeine_0.7.1-1.3ubuntu6.dsc
-> Component: main Section: kde
OK: kaffeine_0.7.1-1.3ubuntu6.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 6 Apr 2006 11:01:04 +0100
Source: kaffeine
Binary: kaffeine-xine kaffeine
Architecture: source
Version: 0.7.1-1.3ubuntu6
Distribution: dapper
Urgency: low
Maintainer: Zack Cerza <zcerza at coe.neu.edu>
Changed-By: Jonathan Riddell <jriddell at ubuntu.com>
Description:
kaffeine - versatile media player for KDE 3
kaffeine-xine - Xine engine for kaffeine media player
Changes:
kaffeine (0.7.1-1.3ubuntu6) dapper; urgency=low
.
* SECURITY UPDATE: fix buffer overflow
* Add kubuntu_05_buffer_overflow.diff
* Remotely supplied playlists can be used to execute
arbitrary code on the local machine using a buffer
overflow in http_peek() while creating HTTP requests
* kaffeine/player-parts/playlistimport.cpp: replace
custom made checks with those from KIO::NetAccess
* References:
CVE-2006-0051
http://www.kde.org/info/security/advisory-20060404-1.txt
Files:
0488409df122848afef613396105f188 829 kde optional kaffeine_0.7.1-1.3ubuntu6.dsc
49187a6f6022e47b4c0c310ca27ae304 38443 kde optional kaffeine_0.7.1-1.3ubuntu6.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
iD8DBQFENPDFpQbm1N1NUIgRAhEOAKCxpU3i2U30R2nZUH7DfQmQSATsEQCdFL/c
We/5Y3JycoZDyftyWzEWa7I=
=fsOF
-----END PGP SIGNATURE-----
More information about the dapper-changes
mailing list