| Summary: | media-sound/amarok: remote exec of arbitrary code from a malicious server | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | Raphael Marichez (Falco) (RETIRED) <falco> |
| Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
| Status: | RESOLVED FIXED | ||
| Severity: | normal | CC: | flameeyes, mail |
| Priority: | High | ||
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6979 | ||
| Whiteboard: | C1 or B2 [glsa] | ||
| Package list: | Runtime testing required: | --- | |
| Bug Depends on: | |||
| Bug Blocks: | 162118 | ||
|
Description
Raphael Marichez (Falco) (RETIRED)
2007-02-14 20:37:08 UTC
Default conf + user complicity (B2), or non-default conf and without user complicity (C1). --> there will be a GLSA 1.4.5-r1 there and ready. thanks diego :) hi arches, could you test and mark amarok-1.4.5-r1 stable, please, thanks is there a preferred version of mogrel to stablize? amarok together with libgpod and libmtp x86 stable and mongrel 1.0 as 1.0.1 is in the tree for only 15 days sparc stable. I've just added ~ppc64 to 1.4.5-r1 so give it a few days before I mark it stable. how would I test the mongrel part of amarok by the way? *** Bug 167530 has been marked as a duplicate of this bug. *** amd64 (and a bunch of deps) stable. ppc stable ppc64 stable yeah good, glsa then GLSA 200703-11, thanks everybody |