[Sync request] Sync flac123 (0.0.11-1) from Debian unstable (main)
Bug #127166 reported by
Michael Bienia
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
flac123 (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
Binary package hint: flac123
Please sync flac123 (0.0.11-1) from Debian unstable (main).
The current package has no Ubuntu changes.
Thanks.
Changelog:
flac123 (0.0.11-1) unstable; urgency=low
* QA upload.
* New upstream release
+ fixes buffer overflow in vorbis comment parsing (CVE-2007-3507),
closes: #432008.
+ patch flac-1.1.13 dropped.
* Updated debian/copyright.
-- Julien Cristau <email address hidden> Fri, 20 Jul 2007 14:53:07 +0200
CVE References
Changed in flac123: | |
importance: | Undecided → Low |
status: | New → Confirmed |
To post a comment you must log in.
[Updating] flac123 (0.0.9-5 [Ubuntu] < 0.0.11-2 [Debian]) 0.0.11- 2.diff. gz: downloading from http:// ftp.us. debian. org/debian/> 0.0.11. orig.tar. gz: downloading from http:// ftp.us. debian. org/debian/> 0.0.11- 2.dsc: downloading from http:// ftp.us. debian. org/debian/>
* Trying to add flac123...
- <flac123_
- <flac123_
- <flac123_
I: flac123 [universe] -> flac123_0.0.9-5 [universe].