Mandrake Linux Security Advisory : kaffeine (MDKSA-2006:065)
Medium Nessus Plugin ID 21200
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionMarcus Meissner discovered Kaffeine contains an unchecked buffer while creating HTTP request headers for fetching remote RAM playlists, which allows overflowing a heap allocated buffer. As a result, remotely supplied RAM playlists can be used to execute arbitrary code on the client machine.
Updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.