Format string vulnerability in artsd, when called by artswrapper, allows local users to gain privileges via format strings in the -a argument, which results in an error message that is not properly handled in a call to the arts_fatal function.Referenceshttp://marc.info/?l=bugtraq&m=102607688730228&w=2http://marc.info/?l=kde-multimedia&m=102607939232023&w=2http://marc.info/?l=vuln-dev&m=102614898620164&w=2
