USN-465-1: PulseAudio vulnerability

25 May 2007

pulseaudio vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 7.04

Software Description

Details

Luigi Auriemma discovered multiple flaws in pulseaudio’s network processing code. If an unauthenticated attacker sent specially crafted requests to the pulseaudio daemon, it would crash, resulting in a denial of service.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 7.04
pulseaudio - 0.9.5-5ubuntu4.1

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system upgrade is sufficient to effect the necessary changes.

References