libmodplug 1:0.7-7ubuntu0.8.04.1 source package in Ubuntu

Changelog

libmodplug (1:0.7-7ubuntu0.8.04.1) hardy-security; urgency=low

  * SECURITY UPDATE: code execution via integer overflow in
    CSoundFile::ReadMed
    - src/load_med.cpp: check for overflow in song comment and song name.
      Make sure strings are properly NULL-terminated.
    - http://modplug-xmms.cvs.sourceforge.net/viewvc/modplug-xmms/libmodplug/src/load_med.cpp?r1=1.1&r2=1.2
    - http://modplug-xmms.cvs.sourceforge.net/viewvc/modplug-xmms/libmodplug/src/load_med.cpp?r1=1.2&r2=1.3
    - CVE-2009-1438

 -- Marc Deslauriers <email address hidden>   Wed, 06 May 2009 15:34:51 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2009-05-07
Uploaded to:
Hardy
Original maintainer:
Ubuntu Development Team
Architectures:
any
Section:
sound
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
libmodplug_0.7.orig.tar.gz 321.7 KiB c80da366576501be18a987c28609bd8ffa340ed20fc03249c70c43634f077052
libmodplug_0.7-7ubuntu0.8.04.1.diff.gz 8.3 KiB e2f58c54a00e04a87679e8cd6c7da98e85c5550f0a2ef40649fadbb15c93d6d9
libmodplug_0.7-7ubuntu0.8.04.1.dsc 750 bytes 6919a9507130a0155bc67978ca5da8cd41b0b590310db9442b64c2f93c31c071

View changes file

Binary packages built by this source

libmodplug-dev: No summary available for libmodplug-dev in ubuntu hardy.

No description available for libmodplug-dev in ubuntu hardy.

libmodplug0c2: No summary available for libmodplug0c2 in ubuntu hardy.

No description available for libmodplug0c2 in ubuntu hardy.