| Release | Version |
|---|---|
| jessie | 2.4.0-1.1+deb8u2 |
| stretch | 2.4.2-1+deb9u1 |
| buster | 2.4.4-1 |
| bullseye | 2.4.4-4 |
| bookworm | 2.4.4-4 |
| trixie | 2.4.4-4 |
| sid | 2.4.4-4 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2005-0838 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow ... |
| CVE-2005-0837 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | IceCast 2.20 allows remote attackers to bypass the XSL parser and obta ... |
| Bug | Description |
|---|---|
| CVE-2018-18820 | A buffer overflow was discovered in the URL-authentication backend of ... |
| CVE-2015-3026 | Icecast before 2.4.2, when a stream_auth handler is defined for URL au ... |
| CVE-2014-9091 | Icecast before 2.4.0 does not change the supplementary group privilege ... |
| CVE-2014-9018 | Icecast before 2.4.1 transmits the output of the on-connect script, wh ... |
| CVE-2011-4612 | icecast before 2.3.3 allows remote attackers to inject control charact ... |
| CVE-2004-2027 | Buffer overflow in Icecast 2.0.0 and earlier allows remote attackers t ... |
| CVE-2004-1561 | Buffer overflow in Icecast 2.0.1 and earlier allows remote attackers t ... |
| DSA / DLA | Description |
|---|---|
| DLA-1588-1 | icecast2 - security update |
| DSA-4333-1 | icecast2 - security update |
| DSA-3239-1 | icecast2 - security update |