[BLFS Trac] #2181: libmusicbrainz security vulnerability

BLFS Trac trac at linuxfromscratch.org
Wed Oct 11 21:06:25 PDT 2006


#2181: libmusicbrainz security vulnerability
---------------------------------------------+------------------------------
 Reporter:  dnicholson at linuxfromscratch.org  |       Owner:  blfs-book at linuxfromscratch.org
     Type:  defect                           |      Status:  new                           
 Priority:  high                             |   Milestone:  6.2                           
Component:  BOOK                             |     Version:  SVN                           
 Severity:  major                            |    Keywords:  security libmusicbrainz       
---------------------------------------------+------------------------------
 Vulnerability in libmusicbrainz <= 2.1.3.

 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4197

 New version released. From the ChangeLog:

 {{{
 Changes for libmusicbrainz 2.1.4
 -------------------------------------

    - Fixed buffer overflows in the RDF parsing and HTTP code. Patch by
      Martin Schulze. (#2066)
    - Fixed memory leaks in RDFExtract. (#2061)
    - Fixed invalid memory access in the HTTP code. (#2033)
 }}}

-- 
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/2181>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch



More information about the blfs-book mailing list