I just tried, but the diff they have [1] doesn't match the source file in that version (I tried the one in hardy, 1.63-beta-1). I don't want to patch it manually since I don't know if in that version there are other places were a fix is needed (I don't "speak" C). I'd be happy if someone who is able to would try to fix it. Debian bug is http://bugs.debian.org /cgi-bin/bugreport.cgi?bug=506377 if it helps.
[1] http://streamripper.cvs.sourceforge.net/viewvc/streamripper/sripper_1x/lib/http.c?view=patch&r1=1.50&r2=1.51&pathrev=sripper-1_64_0 -- CVE-2008-4829: streamripper - fix buffer overflow in all releases https://bugs.launchpad.net/bugs/309370 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs