[ubuntu/jaunty-security] libmikmod (delayed), libmikmod 3.1.11-6ubuntu3.9.04.1 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Wed Sep 29 16:03:33 BST 2010
libmikmod (3.1.11-6ubuntu3.9.04.1) jaunty-security; urgency=low
* SECURITY UPDATE: denial of service via incorrect channel count
- debian/patches/CVE-2007-6720.patch: use channel count of current
song in playercode/mplayer.c.
- CVE-2007-6720
* SECURITY UPDATE: denial of service via XM file
- debian/patches/CVE-2009-0179.patch: fix file format in
loaders/load_xm.c, handle error in playercode/mloader.c.
- CVE-2009-0179
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via Impulse Tracker and Ultratracker files
- debian/patches/CVE-2009-3995f.patch: check number of channels in
loaders/load_ult.c, check volpts in loaders/load_it.c.
- CVE-2009-3995
- CVE-2009-3996
* SECURITY UPDATE: incomplete fix for CVE-2009-3995
- debian/patches/CVE-2010-2546.patch: do further validations in
loaders/load_it.c.
- CVE-2010-2546
- CVE-2010-2971
Date: Wed, 22 Sep 2010 09:59:22 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/libmikmod/3.1.11-6ubuntu3.9.04.1
-------------- next part --------------
Format: 1.8
Date: Wed, 22 Sep 2010 09:59:22 -0400
Source: libmikmod
Binary: libmikmod2-dev libmikmod2
Architecture: source
Version: 3.1.11-6ubuntu3.9.04.1
Distribution: jaunty-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libmikmod2 - A portable sound library
libmikmod2-dev - A portable sound library - development files
Changes:
libmikmod (3.1.11-6ubuntu3.9.04.1) jaunty-security; urgency=low
.
* SECURITY UPDATE: denial of service via incorrect channel count
- debian/patches/CVE-2007-6720.patch: use channel count of current
song in playercode/mplayer.c.
- CVE-2007-6720
* SECURITY UPDATE: denial of service via XM file
- debian/patches/CVE-2009-0179.patch: fix file format in
loaders/load_xm.c, handle error in playercode/mloader.c.
- CVE-2009-0179
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via Impulse Tracker and Ultratracker files
- debian/patches/CVE-2009-3995f.patch: check number of channels in
loaders/load_ult.c, check volpts in loaders/load_it.c.
- CVE-2009-3995
- CVE-2009-3996
* SECURITY UPDATE: incomplete fix for CVE-2009-3995
- debian/patches/CVE-2010-2546.patch: do further validations in
loaders/load_it.c.
- CVE-2010-2546
- CVE-2010-2971
Checksums-Sha1:
017fb09d42727b9aec385e3fe82f867fd91a2efa 1150 libmikmod_3.1.11-6ubuntu3.9.04.1.dsc
877e2d70244bb93a9a645188d5f27540ed592581 338916 libmikmod_3.1.11-6ubuntu3.9.04.1.diff.gz
Checksums-Sha256:
75758c196959a3f7d7625e4cdd93875d05a17bf257faf23dc6b83cde0c979ed4 1150 libmikmod_3.1.11-6ubuntu3.9.04.1.dsc
942aa5b1e4481ec8d479be4f13979307bed7a18f0ea94a7dc34bd7a6061876c6 338916 libmikmod_3.1.11-6ubuntu3.9.04.1.diff.gz
Files:
031a6ed819b4e9f59dc4614f42f91109 1150 libs optional libmikmod_3.1.11-6ubuntu3.9.04.1.dsc
a771044f7ddf578a1618e1667effd243 338916 libs optional libmikmod_3.1.11-6ubuntu3.9.04.1.diff.gz
Original-Maintainer: Ingo Saitz <ingo at debian.org>
More information about the Jaunty-changes
mailing list