This bug was fixed in the package amarok - 2:1.4.9.1-0ubuntu3.2
---------------
amarok (2:1.4.9.1-0ubuntu3.2) hardy-security; urgency=low
* SECURITY UPDATE: integer overflows allow remote attackers to execute
arbitrary code via an Audible Audio (.aa) file (LP: #318555)
- debian/patches/security_audible_tags.diff fix integer overflow while
reading audible aa file tags. Based on upstream patch.
- http://websvn.kde.org/?view=rev&revision=908415
- http://www.trapkit.de/advisories/TKADV2009-002.txt
- CVE-2009-0135
- CVE-2009-0136
-- Harald Sitter <[email protected]> Mon, 19 Jan 2009 22:13:53
+0100
** Changed in: amarok (Ubuntu Intrepid)
Status: In Progress => Fix Released
--
Amarok - integer overflows and unchecked allocation vulnerabilities
https://bugs.launchpad.net/bugs/318555
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to amarok in ubuntu.
--
kubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/kubuntu-bugs
