Jump to content

Mandriva Security Advisories

Existing user? Sign In
Sign In

Remember me Not recommended on shared computers

Forgot your password?
Sign Up

Browse
- Forums
- Events
- Staff
- Online Users
- Leaderboard
- More
Activity
- All Activity
- Search
- More
Leaderboard
More
- More

Advisories MDKSA-2006:126: Updated libtunepimp packages fixes buffer overflow vulnerabilities.

paul

By paul
July 19, 2006 in Mandriva Security Advisories

Share

Recommended Posts

paul

Platinum

paul

Posted July 19, 2006

- Report
- Share

Posted July 19, 2006

Kevin Kofler discovered multiple stack-based buffer overflows in the

LookupTRM::lookup function in libtunepimp 0.4.2 that allow remote

user-complicit attackers to cause a denial of service (application crash)

and possibly execute code via a long (1) Album release date

(MBE_ReleaseGetDate), (2) data, or (3) error strings.

Updated packages have been patched to correct this issue.

Link to comment

Share on other sites

Guest

This topic is now closed to further replies.

Go to topic listing

×

Browse
- Back
- Browse
- Forums
- Events
- Staff
- Online Users
- Leaderboard
Activity
- Back
- All Activity
- Search
Leaderboard

×

Create New...