Amarok CVE-2009-0135 and CVE-2009-0136

To: Debian security <debian-security@lists.debian.org>
Subject: Amarok CVE-2009-0135 and CVE-2009-0136
From: Henri Salo <fgeek@hack.fi>
Date: Mon, 19 Jan 2009 13:01:37 +0200
Message-id: <[🔎] 20090119110137.GA30925@hack.fi>

There is two different CVE IDs given to amarok's vulnerabilities:

CVE-2009-0135 [1]
CVE-2009-0136 [2]

I beleive this DSA [3] is for the first CVE. Is there a need to patch
the second one and if yes - what is the status of that process?


1: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0135
2: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0136
3: http://lists.debian.org/debian-security-announce/2009/msg00013.html

---
Henri Salo

Reply to:

Follow-Ups:
- Re: Amarok CVE-2009-0135 and CVE-2009-0136
  - From: Nico Golde <debian-security+ml@ngolde.de>

Prev by Date: Re: basically security of linux
Next by Date: Re: Amarok CVE-2009-0135 and CVE-2009-0136
Previous by thread: Sincere Greeting,
Next by thread: Re: Amarok CVE-2009-0135 and CVE-2009-0136
Index(es):
- Date
- Thread