[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#572811: kfreebsd: CVE-2009-2650 potential code execution

Package: kfreebsd-8
Version: 8.0-4
Severity: important
Tags: security

the following CVE (Common Vulnerabilities & Exposures) id was
published for kfreebsd-8.

| Heap-based buffer overflow in Sorcerer Software MultiMedia Jukebox 4.0
| Build 020124 allows remote attackers to cause a denial of service
| (application crash) or possibly execute arbitrary code via a crafted
| (1) .m3u or possibly (2) .pst file.

If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.

For further information see:

[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2650

Reply to: