|
|
Family: Debian Local Security Checks --> Category: infos
[DSA1135] DSA-1135-1 libtunepimp Vulnerability Scan
Vulnerability Scan Summary
DSA-1135-1 libtunepimp
Detailed Explanation for this Vulnerability Test
Kevin Kofler discovered several stack-based buffer overflows in the
LookupTRM::lookup function in libtunepimp, a MusicBrainz tagging
library, which allows remote attackers to cause a denial of service or
execute arbitrary code.
For the stable distribution (sarge) these problems have been fixed in
version 0.3.0-3sarge2.
For the unstable distribution (sid) these problems have been fixed in
version 0.4.2-4.
We recommend that you upgrade your libtunepimp packages.
Solution : http://www.debian.org/security/2006/dsa-1135
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
