-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 28 Mar 2007 09:03:00 +0200
Source: xmms
Binary: xmms-dev xmms
Architecture: source i386
Version: 1.2.10+cvs20050209-2sarge1
Distribution: stable-security
Urgency: high
Maintainer: Josip Rodin <joy-packages@debian.org>
Changed-By: Daniel Baumann <daniel@debian.org>
Description:
xmms - Versatile X audio player that looks like Winamp
xmms-dev - XMMS development static library and header files
Changes:
xmms (1.2.10+cvs20050209-2sarge1) stable-security; urgency=high
.
* Backported patch from Kees Cook <kees@ubuntu.com> to address integer
underflow CVE-2007-0654 and overflow CVE-2007-0653 in BMP loader xmms/bmp.c
(see #416423).
Files:
d03e55ebe9c6a5ba2337d5f3542bc883 1065 sound optional xmms_1.2.10+cvs20050209-2sarge1.dsc
ec03ce185b2fd255d58ef5d2267024eb 2796215 sound optional xmms_1.2.10+cvs20050209.orig.tar.gz
8d25c5173ec7d94d0db9f92b418610ce 333600 sound optional xmms_1.2.10+cvs20050209-2sarge1.diff.gz
c0a4c275b67ce3bc166128cd4c1fa747 2395578 sound optional xmms_1.2.10+cvs20050209-2sarge1_i386.deb
52fef7c2ef6a73f329d18b4df43ee6e5 33842 devel optional xmms-dev_1.2.10+cvs20050209-2sarge1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFGCrW6+C5cwEsrK54RAhZhAJ44klBXtcnH9jtKoljP5kdj7hROKwCgtuoy
4Z06P3rm1I60DWA8ahB/F1c=
=hTZd
-----END PGP SIGNATURE-----
Accepted:
xmms-dev_1.2.10+cvs20050209-2sarge1_i386.deb
to pool/main/x/xmms/xmms-dev_1.2.10+cvs20050209-2sarge1_i386.deb
xmms_1.2.10+cvs20050209-2sarge1.diff.gz
to pool/main/x/xmms/xmms_1.2.10+cvs20050209-2sarge1.diff.gz
xmms_1.2.10+cvs20050209-2sarge1.dsc
to pool/main/x/xmms/xmms_1.2.10+cvs20050209-2sarge1.dsc
xmms_1.2.10+cvs20050209-2sarge1_i386.deb
to pool/main/x/xmms/xmms_1.2.10+cvs20050209-2sarge1_i386.deb
