Candidate: CVE-2012-2107
PublicDate: 2014-02-04 21:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2107
 http://www.openwall.com/lists/oss-security/2012/04/16
Description:
 Integer overflow in the main function in util/lpci_main.c in Csound before
 5.17.2, when converting a file, allows user-assisted remote attackers to
 execute arbitrary code via a crafted file, which triggers a heap-based
 buffer overflow.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=661197
 https://bugzilla.redhat.com/show_bug.cgi?id=810807
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_csound:
upstream_csound: released (1:5.17.6~dfsg-1)
hardy_csound: ignored (reached end-of-life)
lucid_csound: ignored (reached end-of-life)
natty_csound: ignored (reached end-of-life)
oneiric_csound: ignored (reached end-of-life)
precise_csound: ignored (reached end-of-life)
precise/esm_csound: DNE (precise was needed)
quantal_csound: ignored (reached end-of-life)
raring_csound: ignored (reached end-of-life)
saucy_csound: ignored (reached end-of-life)
trusty_csound: not-affected (1:6.02~dfsg-1)
trusty/esm_csound: DNE (trusty was not-affected [1:6.02~dfsg-1])
utopic_csound: ignored (reached end-of-life)
vivid_csound: ignored (reached end-of-life)
vivid/stable-phone-overlay_csound: DNE
vivid/ubuntu-core_csound: DNE
wily_csound: ignored (reached end-of-life)
xenial_csound: not-affected (1:6.02~dfsg-1)
yakkety_csound: ignored (reached end-of-life)
zesty_csound: ignored (reached end-of-life)
artful_csound: ignored (reached end-of-life)
bionic_csound: not-affected (1:6.02~dfsg-1)
cosmic_csound: not-affected (1:6.02~dfsg-1)
devel_csound: not-affected (1:6.02~dfsg-1)