--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2008-11956
2008-12-30 22:34:22
--------------------------------------------------------------------------------Name        : libcdaudio
Product     : Fedora 9
Version     : 0.99.12p2
Release     : 11.fc9
URL         : https://libcdaudio.sourceforge.net/
Summary     : Control operation of a CD-ROM when playing audio CDs
Description :
libcdaudio is a library designed to provide functions to control
operation of a CD-ROM when playing audio CDs.  It also contains
functions for CDDB and CD Index lookup.

--------------------------------------------------------------------------------Update Information:

This update fixes a potential buffer overflow caused by large amount of CDDB
replies (CVE-2005-0706).
--------------------------------------------------------------------------------ChangeLog:

* Sat Dec 27 2008 Axel Thimm  - 0.99.12p2-11
- Fix CVE-2005-0706.
* Wed May 21 2008 Tom "spot" Callaway  - 0.99.12p2-10
- took COPYING out of doc (it is simply wrong)
- fixed license tag
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #470552 - CVE-2005-0706 grip,libcdaudio: buffer overflow caused by large amount of CDDB replies
        https://bugzilla.redhat.com/show_bug.cgi?id=470552
--------------------------------------------------------------------------------This update can be installed with the "yum" update program.  Use 
su -c 'yum update libcdaudio' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora 9 Update: libcdaudio-0.99.12p2-11.fc9

February 4, 2009
This update fixes a potential buffer overflow caused by large amount of CDDB replies (CVE-2005-0706).

Summary

libcdaudio is a library designed to provide functions to control

operation of a CD-ROM when playing audio CDs. It also contains

functions for CDDB and CD Index lookup.

This update fixes a potential buffer overflow caused by large amount of CDDB

replies (CVE-2005-0706).

* Sat Dec 27 2008 Axel Thimm - 0.99.12p2-11

- Fix CVE-2005-0706.

* Wed May 21 2008 Tom "spot" Callaway - 0.99.12p2-10

- took COPYING out of doc (it is simply wrong)

- fixed license tag

[ 1 ] Bug #470552 - CVE-2005-0706 grip,libcdaudio: buffer overflow caused by large amount of CDDB replies

https://bugzilla.redhat.com/show_bug.cgi?id=470552

su -c 'yum update libcdaudio' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

http://www.redhat.com/mailman/listinfo/fedora-package-announce

FEDORA-2008-11956 2008-12-30 22:34:22 Product : Fedora 9 Version : 0.99.12p2 Release : 11.fc9 URL : https://libcdaudio.sourceforge.net/ Summary : Control operation of a CD-ROM when playing audio CDs Description : libcdaudio is a library designed to provide functions to control operation of a CD-ROM when playing audio CDs. It also contains functions for CDDB and CD Index lookup. This update fixes a potential buffer overflow caused by large amount of CDDB replies (CVE-2005-0706). * Sat Dec 27 2008 Axel Thimm - 0.99.12p2-11 - Fix CVE-2005-0706. * Wed May 21 2008 Tom "spot" Callaway - 0.99.12p2-10 - took COPYING out of doc (it is simply wrong) - fixed license tag [ 1 ] Bug #470552 - CVE-2005-0706 grip,libcdaudio: buffer overflow caused by large amount of CDDB replies https://bugzilla.redhat.com/show_bug.cgi?id=470552 su -c 'yum update libcdaudio' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce

Change Log

References

Update Instructions

Severity
Product : Fedora 9
Version : 0.99.12p2
Release : 11.fc9
URL : https://libcdaudio.sourceforge.net/
Summary : Control operation of a CD-ROM when playing audio CDs

Related News

5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
8.Locks HexConnections CodeGlobe Esm H320
2 - 3 min read
Canonical has launched Ubuntu Pro for Devices , a comprehensive offering emphasizing security and compliance for IoT device deployments. This
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved