Comment 1 for bug 454892

This bug was fixed in the package ampache - 3.5.1-1ubuntu2

---------------
ampache (3.5.1-1ubuntu2) karmic; urgency=low

   * Changed /modules/getid3/extension.cache.mysql.php to use
     mysql_real_escape_string() instead of mysql_escape_string() which is now
     depreciated. This is needed to correct a potential sql_injection
     vulnerability. (LP: #454892)

 -- Charlie Smotherman <email address hidden> Sun, 18 Oct 2009 08:50:25 -0500