CDRTools CDRecord Devname Format String Vulnerability

CDRTools CDRecord Devname Format String Vulnerability

Solution:
Mandrake has released a security advisory (MDKSA-2003:058-1), updating a previous advisory. Users are advised to upgrade as soon as possible. Further information regarding how to obtain and apply fixes can be found in the attached advisory.

The vendor has released an update to address this issue:

CDRTools CDRecord 2.0

CDRTools cdrtools-2.01a14.tar.gz
ftp://ftp.berlios.de/pub/cdrecord/alpha/cdrtools-2.01a14.tar.gz