Ubuntu
id3lib3.8.3 package

[Sync request] Sync id3lib3.8.3 (3.8.3-7) from Debian unstable (main)

Bug #133477 reported by Michael Bienia
4
Affects Status Importance Assigned to Milestone
id3lib3.8.3 (Ubuntu)
Fix Released
High
Unassigned

Bug Description

Please sync id3lib3.8.3 (3.8.3-7) from Debian unstable (main).

The current package has no Ubuntu changes.
The new package builds fine in a gutsy pbuilder.

Thanks.

Changelog:

id3lib3.8.3 (3.8.3-7) unstable; urgency=high

  * SECURITY: Change #ifdef logic to select mkstemp() code instead of
    insecure tempfile creation code, and fix mkstemp() code to work with g++
    3.x, closes: #438540

 -- Robert Woodcock <email address hidden> Sat, 18 Aug 2007 15:52:52 -0700

Revision history for this message
Kees Cook (kees) wrote :

ACK, please sync. This is also on my list for security updates in the stable releases now.

Changed in id3lib3.8.3:
importance: Undecided → High
status: New → Triaged
Revision history for this message
Kees Cook (kees) wrote :

I take it back, I won't be doing security updates for this problem; it uses the current path for files, not a world-writeable area each time. (But, yes, please sync)

Revision history for this message
Sebastien Bacher (seb128) wrote :

[Updating] python-debian (0.1.3ubuntu1 [Ubuntu] < 0.1.5 [Debian])
 * Trying to add python-debian...
  - <python-debian_0.1.5.tar.gz: downloading from http://ftp.debian.org/debian/>
  - <python-debian_0.1.5.dsc: downloading from http://ftp.debian.org/debian/>
I: python-debian [universe] -> python-debian_0.1.3ubuntu1 [universe].

Changed in id3lib3.8.3:
status: Triaged → Fix Released
Revision history for this message
Sebastien Bacher (seb128) wrote :

[Updating] id3lib3.8.3 (3.8.3-6build1 [Ubuntu] < 3.8.3-7 [Debian])
 * Trying to add id3lib3.8.3...
  - <id3lib3.8.3_3.8.3-7.diff.gz: downloading from http://ftp.debian.org/debian/>
  - <id3lib3.8.3_3.8.3.orig.tar.gz: already in distro - downloading from librarian>
  - <id3lib3.8.3_3.8.3-7.dsc: downloading from http://ftp.debian.org/debian/>
I: id3lib3.8.3 [main] -> libid3-3.8.3c2a_3.8.3-6build1 [main].
I: id3lib3.8.3 [main] -> libid3-3.8.3-dev_3.8.3-6build1 [main].

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.