Ubuntu
icecast2 package

  1. Bug #894782
  2. Comment #36

Comment 36 for bug 894782

Revision history for this message
In , Glsamaker (glsamaker) wrote :

CVE-2011-4612 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-4612):
  icecast before 2.3.3 allows remote attackers to inject control characters
  such as newlines into the error loc (error.log) via a crafted URL.