Your submission was sent successfully! Close

USN-739-1: Amarok vulnerabilities

17 March 2009

Amarok vulnerabilities




It was discovered that Amarok did not correctly handle certain malformed
tags in Audible Audio (.aa) files. If a user were tricked into opening a
crafted Audible Audio file, an attacker could execute arbitrary code with
the privileges of the user invoking the program.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 8.10
Ubuntu 8.04
Ubuntu 7.10

In general, a standard system upgrade is sufficient to effect the
necessary changes.