libmodplug 1:0.7-7ubuntu0.8.04.1 source package in Ubuntu

Changelog

libmodplug (1:0.7-7ubuntu0.8.04.1) hardy-security; urgency=low

  * SECURITY UPDATE: code execution via integer overflow in
    CSoundFile::ReadMed
    - src/load_med.cpp: check for overflow in song comment and song name.
      Make sure strings are properly NULL-terminated.
    - http://modplug-xmms.cvs.sourceforge.net/viewvc/modplug-xmms/libmodplug/src/load_med.cpp?r1=1.1&r2=1.2
    - http://modplug-xmms.cvs.sourceforge.net/viewvc/modplug-xmms/libmodplug/src/load_med.cpp?r1=1.2&r2=1.3
    - CVE-2009-1438

 -- Marc Deslauriers <email address hidden>   Wed, 06 May 2009 15:34:51 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2009-05-07
Uploaded to:
Hardy
Original maintainer:
Ubuntu Development Team
Component:
main
Architectures:
any
Section:
sound
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size MD5 Checksum
libmodplug_0.7.orig.tar.gz 321.7 KiB b6e7412f90cdd4a27a2dd3de94909905
libmodplug_0.7-7ubuntu0.8.04.1.diff.gz 8.3 KiB e5c0199a6649713b1702fbc6e2d6fc20
libmodplug_0.7-7ubuntu0.8.04.1.dsc 750 bytes 16855b20226f3c668aeabfb00366dfee

View changes file

Binary packages built by this source

libmodplug-dev: No summary available for libmodplug-dev in ubuntu hardy.

No description available for libmodplug-dev in ubuntu hardy.

libmodplug0c2: No summary available for libmodplug0c2 in ubuntu hardy.

No description available for libmodplug0c2 in ubuntu hardy.