[Bug 218652] Re: CVE-2008-1686: Multiple speex implementations insufficient boundary checks

Launchpad Bug Tracker Thu, 08 May 2008 14:12:11 -0700

This bug was fixed in the package gst-plugins-good0.10 -
0.10.7-3ubuntu0.1

---------------
gst-plugins-good0.10 (0.10.7-3ubuntu0.1) hardy-security; urgency=low


  * SECURITY UPDATE: array index vulnerability (LP: #218652)
  * debian/patches/99_SECURITY_CVE-2008-1686.patch: fix for
    ext/speex/gstspeexdec.c to properly validate its input
  * References
    CVE-2008-1686

 -- Jamie Strandboge <[EMAIL PROTECTED]>   Wed, 07 May 2008 13:09:52
-0400

** Changed in: gst-plugins-good0.10 (Ubuntu Hardy)
       Status: Fix Committed => Fix Released

** Changed in: gst-plugins-good0.10 (Ubuntu Gutsy)
       Status: Fix Committed => Fix Released

-- 
CVE-2008-1686: Multiple speex implementations insufficient boundary checks
https://bugs.launchpad.net/bugs/218652
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 218652] Re: CVE-2008-1686: Multiple speex implementations insufficient boundary checks

Reply via email to