MDVSA-2009:055 -- Mandriva audacityID: oval:org.secpod.oval:def:300797 | Date: (C)2012-01-07 (M)2023-11-13 |
Class: PATCH | Family: unix |
A vulnerability has been identified and corrected in audacity: Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a .gro file containing a long string . The updated packages have been patched to prevent this.
Platform: |
Mandriva Linux 2009.0 |
Mandriva Linux 2008.1 |
Mandriva Linux 2008.0 |