It was discovered that gst-plugins-bad0.10, the GStreamer plugins from the "bad" set, is prone to an integer overflow when processing a MED file with a crafted song comment or song name. For the oldstable distribution (etch), this problem has been fixed in version 0.10.3-3.1+etch3. For the stable distribution (lenny), this problem has been fixed in version 0.10.7-2+lenny2. For the testing distribution (squeeze) and the unstable distribution (sid), gst-plugins-bad0.10 links against libmodplug. We recommend that you upgrade your gst-plugins-bad0.10 packages.
It was discovered that gst-plugins-bad0.10, the GStreamer plugins from the "bad" set, is prone to an integer overflow when processing a MED file with a crafted song comment or song name.
For the oldstable distribution (etch), this problem has been fixed in version 0.10.3-3.1+etch4.
For the stable distribution (lenny), this problem has been fixed in version 0.10.7-2+lenny2.
For the testing distribution (squeeze) and the unstable distribution (sid), gst-plugins-bad0.10 links against libmodplug.
We recommend that you upgrade your gst-plugins-bad0.10 packages.
MD5 checksums of the listed files are available in the original advisory.