Accepted xmms 1:1.2.10+20061201-1ubuntu3 (source)
Kees Cook
kees at ubuntu.com
Tue Mar 27 22:15:23 BST 2007
Accepted:
OK: xmms_1.2.10+20061201-1ubuntu3.dsc
-> Component: main Section: sound
OK: xmms_1.2.10+20061201-1ubuntu3.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 26 Mar 2007 18:01:10 -0700
Source: xmms
Binary: xmms-dev xmms
Architecture: source
Version: 1:1.2.10+20061201-1ubuntu3
Distribution: feisty
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Kees Cook <kees at ubuntu.com>
Description:
xmms - Versatile X audio player
xmms-dev - XMMS development static library and header files
Changes:
xmms (1:1.2.10+20061201-1ubuntu3) feisty; urgency=low
.
* SECURITY UPDATE: code execution via integer overflows in bmp loader.
* debian/patches/50-bmp-loader-overflows.dpatch: bounds-check sizes.
* References
CVE-2007-0653 CVE-2007-0654
Files:
4d5170eaf42595c726eab5925b30a007 1104 sound optional xmms_1.2.10+20061201-1ubuntu3.dsc
ed63f4554f060b02c306bbfc59c80cb4 1459916 sound optional xmms_1.2.10+20061201-1ubuntu3.diff.gz
Original-Maintainer: Daniel Baumann <daniel at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGCX81H/9LqRcGPm0RAkIYAKCfOlMNUNN14XlJy0glQstb0vsqWgCfZ84p
h1WQRapLF0oVdTe4VnqlMH8=
=nAyH
-----END PGP SIGNATURE-----
More information about the feisty-changes
mailing list