PublicDate: 2008-04-16 16:05:00 UTC
Candidate: CVE-2008-1834
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1834
Description:
 swfdec_load_object.c in Swfdec before 0.6.4 does not properly restrict
 local file access from untrusted sandboxes, which allows remote attackers
 to read arbitrary files via a crafted Flash file.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_swfdec0.6:
upstream_swfdec0.6: released (0.6.4)
dapper_swfdec0.6: DNE
feisty_swfdec0.6: DNE
gutsy_swfdec0.6: DNE
hardy_swfdec0.6: not-affected (0.6.4-2)
intrepid_swfdec0.6: not-affected (0.6.4-2)
jaunty_swfdec0.6: not-affected (0.6.4-2)
karmic_swfdec0.6: not-affected (0.6.4-2)
lucid_swfdec0.6: DNE
maverick_swfdec0.6: DNE
natty_swfdec0.6: DNE
oneiric_swfdec0.6: DNE
devel_swfdec0.6: DNE

Patches_swfdec0.5:
upstream_swfdec0.5: needs-triage
dapper_swfdec0.5: DNE
feisty_swfdec0.5: DNE
gutsy_swfdec0.5: needed (reached end-of-life)
hardy_swfdec0.5: ignored (reached end-of-life)
intrepid_swfdec0.5: DNE
jaunty_swfdec0.5: DNE
karmic_swfdec0.5: DNE
lucid_swfdec0.5: DNE
maverick_swfdec0.5: DNE
natty_swfdec0.5: DNE
oneiric_swfdec0.5: DNE
devel_swfdec0.5: DNE