==========================================================Ubuntu Security Notice USN-268-1 April 06, 2006
A security issue affects the following Ubuntu releases:
The problem can be corrected by upgrading the affected package to
version 0.6-0ubuntu2.1 (for Ubuntu 5.04), or 0.7-0ubuntu4.1 (for
Ubuntu 5.10). In general, a standard system upgrade is sufficient to
effect the necessary changes.
Marcus Meissner discovered a buffer overflow in the http_peek()
function. By tricking an user into opening a specially crafted
playlist URL with Kaffeine, a remote attacker could exploit this to
execute arbitrary code with the user's privileges.