Format: 1.7
Date: Wed, 06 May 2009 15:45:23 -0400
Source: libmodplug
Binary: libmodplug-dev libmodplug0c2
Architecture: sparc
Version: 1:0.7-5ubuntu0.6.06.2
Distribution: dapper
Urgency: low
Maintainer: Ubuntu/sparc Build Daemon <buildd@artigas.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 libmodplug0c2 - shared libraries for mod music based on ModPlug
Changes: 
 libmodplug (1:0.7-5ubuntu0.6.06.2) dapper-security; urgency=low
 .
   * SECURITY UPDATE: code execution via integer overflow in
     CSoundFile::ReadMed
     - src/load_med.cpp: check for overflow in song comment and song name.
       Make sure strings are properly NULL-terminated.
     - http://modplug-xmms.cvs.sourceforge.net/viewvc/modplug-xmms/libmodplug/src/load_med.cpp?r1=1.1&amp;r2=1.2
     - http://modplug-xmms.cvs.sourceforge.net/viewvc/modplug-xmms/libmodplug/src/load_med.cpp?r1=1.2&r2=1.3
     - CVE-2009-1438
Files: 
 275f5a45734db4cc7c43eb63c1573bea 123506 sound optional libmodplug0c2_0.7-5ubuntu0.6.06.2_sparc.deb