[Bug 1450] New: Mpg123 Security Vulnerability

blfs-bugs at linuxfromscratch.org blfs-bugs at linuxfromscratch.org
Thu Jul 21 11:30:22 PDT 2005


http://blfs-bugs.linuxfromscratch.org/show_bug.cgi?id=1450

           Summary: Mpg123 Security Vulnerability
           Product: Beyond LinuxFromScratch
           Version: SVN
          Platform: All
               URL: http://www.mpg123.de/
        OS/Version: Linux
            Status: NEW
          Severity: critical
          Priority: P1
         Component: BOOK
        AssignedTo: blfs-book at linuxfromscratch.org
        ReportedBy: randy at linuxfromscratch.org
         QAContact: blfs-book at linuxfromscratch.org


The maintainer's site for the Mpg123 package says that you should *not*
use the source code we show in the BLFS book.

There may be a fix (patches) on the Debian or Gentoo sites, though I did
not check into this.

For the time being we need to decide if perhaps commenting out this 
package from the multimedia section in BLFS might not be the best plan.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
You are the QA contact for the bug, or are watching the QA contact.



More information about the blfs-book mailing list