Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Fedora Core 2: FEDORA-2005-202 Moderate: Grip Buffer Overflow

fedora
Calendar Grey March 9, 2005
Dist Fedora Esm H88
Fedora Core 2 has issued an update to fix a critical buffer overflow vulnerability in grip, improving security and reliability for users managing audio CD metadata.
This fixes a buffer overflow when the CDDB server returns more than 16 matches.

Summary

Grip is a GTK+ based front-end for CD rippers (such as cdparanoia and

cdda2wav) and Ogg Vorbis encoders. Grip allows you to rip entire tracks or

just a section of a track. Grip supports the CDDB protocol for

accessing track information on disc database servers.

This fixes a buffer overflow when the CDDB server returns more than 16

matches.

- add patch to fix overflow when there are too many CDDB matches

* Fri Oct 8 2004 Bill Nottingham 3.2.0-3

- add a passel of buildreqs (#135045)

* Wed Jul 28 2004 Adrian Havill 3.2.0-2

- rebuilt

- add vte-devel to BuildRequires

* Sun Jun 20 2004 Karsten Hopp 3.2.0-1

- update to latest stable version

- remove obsolete locking and cdparanoia patches

* Tue Jun 15 2004 Elliot Lee

- rebuilt

c5c34b3b3b297be7ece95e59dc7c31ce SRPMS/grip-3.2.0-3.fc2.src.rpm

668467205016befb3793a75557a92878 x86_64/grip-3.2.0-3.fc2.x86_64.rpm

79927efa8e6eb9c877f5c933951e1ca2 x86_64/debug/grip-debuginfo-3.2.0-3.fc2.x86_64.rpm

57f3ffa668a0283b27e43255d20ae6d4 i386/grip-3.2.0-3.fc2.i386.rpm

3dbd12ec9d02d4f4b5a7d5bfe68a89bc i386/debug/grip-debuginfo-3.2.0-3.fc2.i386.rpm

This update can also be installed with the Update Agent; you can

launch the Update Agent with the 'up2date' command.

fedora-announce-list@redhat.com

Change Log

References

Update Instructions

Name: grip
Version: 3.2.0
Release: 3.fc2
Summary: A front-end for CD rippers and Ogg Vorbis encoders.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here