Here is the changelog entry for festival 1.4.3-21:
festival (1.4.3-21) unstable; urgency=medium
* debian/festival.init: fixed CVE-2007-4074: priviledge escalation
(Closes: #435445)
* debian/festival.postinst: adding new user festival to audio group
* debian/README.Debian: added warning about possible security flow
* debian/control: updated dependency of sysv-rc, added dependency on adduser
* debian/rules: a better clean target
* lib/languages.scm: fixed typo from previous patch, Thanks to Niko Tyni
<[EMAIL PROTECTED]> for this (Closes: #427550)
-- Kartik Mistry <[EMAIL PROTECTED]> Thu, 2 Aug 2007 13:52:29
+0530
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-4074
--
[Merge] festival 1.4.3-21ubuntu1
https://bugs.launchpad.net/bugs/130348
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
