Accepted libmusicbrainz-2.1 2.1.2-6ubuntu2 (source)
Kees Cook
kees at ubuntu.com
Wed Oct 11 08:25:09 BST 2006
Accepted:
OK: libmusicbrainz-2.1_2.1.2-6ubuntu2.dsc
-> Component: main Section: libs
OK: libmusicbrainz-2.1_2.1.2-6ubuntu2.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 10 Oct 2006 13:34:16 -0700
Source: libmusicbrainz-2.1
Binary: libmusicbrainz4c2a libmusicbrainz4-dev
Architecture: source
Version: 2.1.2-6ubuntu2
Distribution: edgy
Urgency: low
Maintainer: Debian QA Group <packages at qa.debian.org>
Changed-By: Kees Cook <kees at ubuntu.com>
Description:
libmusicbrainz4-dev - Second generation incarnation of the CD Index - development
libmusicbrainz4c2a - Second generation incarnation of the CD Index - library
Changes:
libmusicbrainz-2.1 (2.1.2-6ubuntu2) edgy; urgency=low
.
* SECURITY UPDATE: Buffer overflows allow for remote code execution.
* Add 'debian/patches/04-http_rdf_overflows.patch': correctly bounds
check HTTP hostnames and RDF input. Applied inline.
* References
CVE-2006-4197
http://bugs.musicbrainz.org/ticket/2066
* debian/rules: dropped a few more references to python for clean builds.
Files:
6dabd53d9bda061c8c32af3b645735c2 680 libs optional libmusicbrainz-2.1_2.1.2-6ubuntu2.dsc
1c76176a4230876b88a7b225805c1b7f 7624 libs optional libmusicbrainz-2.1_2.1.2-6ubuntu2.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
iD8DBQFFLJxVDecnbV4Fd/IRAiwSAKDkt7eqMJ1KzksBtqVoBs0tZo6U/wCghs0z
WUbW6f37AXM8jcRvVVNAIL8=
=JMUF
-----END PGP SIGNATURE-----
More information about the edgy-changes
mailing list