Accepted libdumb 1:0.9.3-5 (source)
Ubuntu Installer
archive at ubuntu.com
Tue Jul 25 19:33:34 BST 2006
Accepted:
OK: libdumb_0.9.3-5.dsc
-> Component: universe Section: libs
OK: libdumb_0.9.3-5.diff.gz
Origin: Debian/unstable
Format: 1.7
Date: Tue, 25 Jul 2006 15:57:28 +0100
Source: libdumb
Binary: libaldmb1-dev, libdumb1-dev, libaldmb1, libdumb1
Architecture: source
Version: 1:0.9.3-5
Distribution: edgy
Urgency: critical
Maintainer: Debian allegro packages maintainers <pkg-allegro-maintainers at lists.alioth.debian.org>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Closes: 379064
Changes:
libdumb (1:0.9.3-5) unstable; urgency=critical
.
* Set urgency=critical because of security fix.
.
* debian/patches/100_CVE-2006-3668.diff:
+ Fix for CVE-2006-3668 "Heap-based buffer overflow in the it_read_envelope
function in Dynamic Universal Music Bibliotheque (DUMB) 0.9.3 and
earlier, and current CVS as of 20060716, allows user-complicit attackers
to execute arbitrary code via a ".it" (Impulse Tracker) file with an
enveloper with a large number of nodes." (Closes: #379064).
.
* debian/control:
+ Set policy to 3.7.2.
Files:
b91cf1acdf25110b2fbd49f169c81e63 754 libs optional libdumb_0.9.3-5.dsc
6be3173f27c100781014fa249fc0cf08 4379 libs optional libdumb_0.9.3-5.diff.gz
More information about the edgy-changes
mailing list