-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Thu, 17 Apr 2008 19:03:48 +0200 Source: mt-daapd Binary: mt-daapd Architecture: source amd64 Version: 0.9~r1696-1.3 Distribution: unstable Urgency: high Maintainer: Joshua Kwan <joshk@triplehelix.org> Changed-By: Nico Golde <nion@debian.org> Description: mt-daapd - iTunes-compatible DAAP server Closes: 476241 Changes: mt-daapd (0.9~r1696-1.3) unstable; urgency=high . * Non-maintainer upload by the Security Team. * Fix integer overflow leading to heap-based buffer overflow causing a remote Denial of Service and possibly allows to execute arbitrary code (CVE-2008-1771; Closes: #476241). Checksums-Sha1: 954ad909599382bc62f9fb98ca5fbf4b668357b0 1153 mt-daapd_0.9~r1696-1.3.dsc 810f347b3ee562c163ae6aed52cef6a9d3ae60d2 19985 mt-daapd_0.9~r1696-1.3.diff.gz 27deedd13b7bf72e6b4069f397c7e2c384ddb946 742660 mt-daapd_0.9~r1696-1.3_amd64.deb Checksums-Sha256: 1d298bb1359955638e87e11bc4b8e9f9bd472bd84d3c291f6f7cb36a7a20e100 1153 mt-daapd_0.9~r1696-1.3.dsc 541f500237fbf6b35616fc2b9d8a20b5debdec08aae15ed3bc34ad0469e5db2f 19985 mt-daapd_0.9~r1696-1.3.diff.gz 8197a418e9eec9b151aa663cc6349deb64ac276845dc1d4cf96dd541c0381a17 742660 mt-daapd_0.9~r1696-1.3_amd64.deb Files: 1383ddb4b921b5ee1dd1a753b0657c12 1153 sound optional mt-daapd_0.9~r1696-1.3.dsc 413a1c480bc622ff0c8a98353f1f9b71 19985 sound optional mt-daapd_0.9~r1696-1.3.diff.gz db0435938bad3bba73f709b1052548e9 742660 sound optional mt-daapd_0.9~r1696-1.3_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIB6mfHYflSXNkfP8RAsNvAJ0XDZsTkeSJsU92FBXEg1u7OcaA8gCfbY36 wN7j8wrhnzivyMtP41aZoOE= =1duT -----END PGP SIGNATURE----- Accepted: mt-daapd_0.9~r1696-1.3.diff.gz to pool/main/m/mt-daapd/mt-daapd_0.9~r1696-1.3.diff.gz mt-daapd_0.9~r1696-1.3.dsc to pool/main/m/mt-daapd/mt-daapd_0.9~r1696-1.3.dsc mt-daapd_0.9~r1696-1.3_amd64.deb to pool/main/m/mt-daapd/mt-daapd_0.9~r1696-1.3_amd64.deb