This bug was fixed in the package vorbis-tools - 1.1.1-6ubuntu0.1
---------------
vorbis-tools (1.1.1-6ubuntu0.1) feisty-security; urgency=low
* SECURITY UPDATE: array index vulnerability (LP: #218652)
* debian/patches/SECURITY_CVE-2008-1686.diff: fix for ogg123/speex_format.c
to properly validate its input
* References
CVE-2008-1686
-- Jamie Strandboge <[EMAIL PROTECTED]> Wed, 07 May 2008 13:58:41
-0400
--
CVE-2008-1686: Multiple speex implementations insufficient boundary checks
https://bugs.launchpad.net/bugs/218652
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
