MDVSA-2009:055 -- Mandriva audacity
|ID: oval:org.secpod.oval:def:300797||Date: (C)2012-01-07 (M)2018-02-25|
|Class: PATCH||Family: unix|
A vulnerability has been identified and corrected in audacity: Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a .gro file containing a long string . The updated packages have been patched to prevent this.
|Mandriva Linux 2009.0|
|Mandriva Linux 2008.1|
|Mandriva Linux 2008.0|