[Bug 120400] Re: heap overflow in OpenOffice.org RTF parsing routine

Thanks for finally releasing the fix. It installed fine on my Dapper/amd64 installation. -- heap overflow in OpenOffice.org RTF parsing routine https://bugs.launchpad.net/bugs/120400 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu.

[Bug 125233] [flashplugin-nonfree] Arbitrary code execution in Flash Player 9.0.45.0 and prior versions

Public bug reported: Binary package hint: flashplugin-nonfree An updated version of Adobe Flash Player, that fixes possible arbitrary code execution, is available. Please provide updated packages for flashplugin-nonfree. From: http://www.heise-security.co.uk/news/92520 While an input

[Bug 125237] Re: [GIMP] Multiple Integer Overflow Vulnerabilities

** Visibility changed to: Public -- [GIMP] Multiple Integer Overflow Vulnerabilities https://bugs.launchpad.net/bugs/125237 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com

[Bug 122207] Re: vlc before 0.8.6c allows arbitrary code execution via a multitude of vectors

** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2007-3467 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2007-3468 -- vlc before 0.8.6c allows arbitrary code execution via a multitude of vectors https://bugs.launchpad.net/bugs/122207 You received this bug

[Bug 125000] [Feisty] Kernel 2.6.20: Netfilter/H.323 vulnerability

Public bug reported: Binary package hint: linux-image-2.6.20-16-generic Latest Linux-Kernel 2.6.20.15 fixes a security vulnerability in the part of netfilter which handles the VoIP protocol H.323. Could someone from the kernel team please check if Feisties kernel is affected? From:

[Bug 122207] Re: vlc before 0.8.6c allows arbitrary code execution via a multitude of vectors

Updated packages for Debian Oldstable (Sarge), Stable (Etch) and Unstable (Sid) have been announced on Debian's security mailing list and are already available. The according Debian Security Advisory should soon be available at http://www.debian.org/security/2007/dsa-1332 (link provides 404 at

[Bug 120400] Re: heap overflow in OpenOffice.org RTF parsing routine

Sorry if I'm bugging with this, but this security-related bug has been unresolved for almost a whole month now, and OpenOffice.org is part of Ubuntu's main repositories. The time it takes Ubuntu to provide updated packages for security vulnerabilities in some areas (just take a look how long it

[Bug 107954] Re: [kdm, feisty] kdmrc and backgroundrc don't default to kubuntu artwork

*** This bug is a duplicate of bug 58639 *** https://bugs.launchpad.net/bugs/58639 But there's still no easier solution than manually editing config files to get kubuntu-theming for kdm. While I agree that kdm shouldn't depend on kubuntu-default-settings, perhaps there should be an optional

[Bug 107954] Re: [kdm, feisty] kdmrc and backgroundrc don't default to kubuntu artwork

Yes, the reported behaviour affects the upgrade path from Edgy to Feisty. -- [kdm, feisty] kdmrc and backgroundrc don't default to kubuntu artwork https://bugs.launchpad.net/bugs/107954 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for

[Bug 107954] Re: [kdm, feisty] kdmrc and backgroundrc don't default to kubuntu artwork

I performed an online-upgrade via 'aptitude dist-upgrade'. -- [kdm, feisty] kdmrc and backgroundrc don't default to kubuntu artwork https://bugs.launchpad.net/bugs/107954 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. --

[Bug 120400] Re: heap overflow in OpenOffice.org RTF parsing routine

Nothing new on this one? When will the fixed packages be available? -- heap overflow in OpenOffice.org RTF parsing routine https://bugs.launchpad.net/bugs/120400 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs

[Bug 123972] Gimp PSD Plugin Integer Overflow Vulnerability

Public bug reported: Binary package hint: gimp From http://secunia.com/secunia_research/2007-63/advisory : -- Affected Software: Gimp 2.2.15 (Other versions may also be affected.) -- Severity: Rating: Moderately Critical Impact: System Access Where: Remote -- Description of Vulnerability:

[Bug 121511] Re: [VLC] Format string injection in Vorbis, Theora, SAP and CDDA plugins

Changing this back to Confirmed, because no fixed packages for the stable releases (Dapper, Edgy and Feisty) are available. ** Changed in: vlc (Ubuntu) Status: Fix Released = Confirmed -- [VLC] Format string injection in Vorbis, Theora, SAP and CDDA plugins

[Bug 120400] Re: heap overflow in OpenOffice.org RTF parsing routine

No news on this one after almost two weeks? Sorry for my impatience, but this is a confirmed security-related bug with a status of critical in a vital Ubuntu component, so I think there's quite some urge to release a security update as fast as possible. -- heap overflow in OpenOffice.org RTF

[Bug 121511] [VLC] Format string injection in Vorbis, Theora, SAP and CDDA plugins

Public bug reported: Binary package hint: vlc From: http://www.videolan.org/sa0702.html Affected versions: VLC media player 0.8.6b and earlier Details: VLC media player Ogg/Vorbis, Ogg/Theora, CDDA (CD Digital Audio) and SAP (Service Announce Protocol) plugins are prone to a C-style format

[Bug 120400] Re: OpenOffice executes code from rtf documents

** Visibility changed to: Public -- OpenOffice executes code from rtf documents https://bugs.launchpad.net/bugs/120400 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com

[Bug 98527] Re: (libxine-main1, Dapper, amd64) Sound distortions since security update USN-435-1

The distortions have not been happening for some weeks. Instead now I'm experiencing hickups when playing media files over cifs-mounted samba shares, but only once per boot-cycle so far. I could try if this also happens when playing media files from the local hard drive. This kind of behaviour is

[Bug 117314] Re: latest kernel(2.6.20-16.28) update gives boot problems

The mentioned wiki page regarding usage of UUID (https://wiki.ubuntu.com/UsingUUID) doesn't exist: This page does not exist yet. You can create a new empty page, or use one of the page templates. Before creating the page, please check if a similar page already exists. -- latest

[Bug 89704] Re: No backport of Firefox 2.o to Dapper

I for my part would be happy if Firefox stayed at 1.5 in Dapper. Unfortunately, AFAIK there's no Plastikfox-theme available for Firefox 2, so I would lose my (cosmetical) KDE integration with an upgraded Firefox. Debian shows that it's possible to support an outdated Firefox securitywise; Firefox

[Bug 43238] Re: Firefox open / save dialog is a pain for kde users

Since Firefox 2.0, adding ui.allow_platform_file_picker set to false in about:config, provides a file saving dialog that should be more convenient for KDE users. AFAIK, adding FILEPICKER_CONTRACTID to /usr/lib/firefox/components/nsFilePicker.js doesn't work anymore. -- Firefox open / save dialog

[Bug 49568] Re: Thunderbird KDE-integration

This affects Firefox 1.5 as well, see Bug#43238. Well, my ultimate solution was to migrate from Thunderbird to KMail, since there wasn't a nice Plastik-skin available for Thunderbird 1.5. Now I have all the KDE look, feel and integration that I want and need, and got an even better mail client

[Bug 89704] Re: No backport of Firefox 2.o to Dapper

Sorry, this may be a bit OT. Some quick links to HOWTOs which should give some ideas how to integrate a vanilla 32 bit Firefox in Ubuntu 64 bit: [1] http://doc.gwos.org/index.php/AMD64_Firefox32 [2] http://ubuntuforums.org/showthread.php?p=1174435 I roughly followed [1] when I added the vanilla

<    1   2   3   4