Package: abcde Version: 2.2.6-1 Followup-For: Bug #355296
When trying to rip this CD: http://www.freedb.org/freedb_search_fmt.php?cat=classical&id=4a0e9206 DTITLE=Beethoven / Beethoven: Symphony No.3 "Eroica" * Overtures The * gets expanded by abcde, then the expansion is processes (spaces replaced with _s, etc) and abcde tries to use it as the directory name (and probably meta data album). possibly exploitable by a malicious cddb response depending on what abcde does with the string... -- System Information: Debian Release: 3.1 Architecture: alpha Kernel: Linux 2.6.15.7-grsec Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages abcde depends on: ii cd-discid 0.9-1 CDDB DiscID utility ii cdda2wav 4:2.01+01a01-2 Creates WAV files from audio CDs ii cdparanoia 3a9.8-11 An audio extraction tool for sampl ii flac 1.1.1-5gps01 Free Lossless Audio Codec - comman ii vorbis-tools 1.0.1-1.3 Several Ogg Vorbis Tools ii wget 1.9.1-12 retrieves files from the web -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]