PublicDate: 2006-07-18 15:47:00 UTC
Candidate: CVE-2006-3668
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3668
Description:
 Heap-based buffer overflow in the it_read_envelope function in Dynamic
 Universal Music Bibliotheque (DUMB) 0.9.3 and earlier and current CVS as of
 20060716, including libdumb, allows user-assisted attackers to execute
 arbitrary code via a ".it" (Impulse Tracker) file with an envelope with a
 large number of nodes.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_libdumb: ignored (reached end-of-life)
edgy_libdumb: released (0.9.3-5)
feisty_libdumb: released (0.9.3-5)
gutsy_libdumb: released (0.9.3-5)
hardy_libdumb: released (0.9.3-5)
intrepid_libdumb: released (0.9.3-5)
jaunty_libdumb: released (0.9.3-5)
karmic_libdumb: released (0.9.3-5)
devel_libdumb: released (0.9.3-5)
upstream_libdumb: needs-triage