From the debian bug by Brandon: There is bug in mikmod that causes an app to segfault or abort when loading multiple music files with varying number of channels. This is the same bug that I reported, and fixed, almost a year ago in SDL-mixer, which until recently used an internal version of a slightly older libmikmod. Here is the (now archived) bug report: http://bugs.debian.org/422021 Previously, I believed that the latest version of libmikmod, which Debian uses, was unaffected by this bug. I had done some preliminary, non-conclusive tests in this regard. I was wrong. Libmikmod is indeed affected.
We can include the debian patch or wait for upstream it seems. Can you confirm and provide an updated ebuild, sound herd?
You might also want to check bug #252950 .
CVE-2007-6720 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6720): libmikmod 3.1.9 through 3.2.0, as used by MikMod, SDL-mixer, and possibly other products, relies on the channel count of the last loaded song, rather than the currently playing song, for certain playback calculations, which allows user-assisted attackers to cause a denial of service (application crash) by loading multiple songs (aka MOD files) with different numbers of channels. CVE-2009-0179 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0179): libmikmod 3.1.11 through 3.2.0, as used by MikMod and possibly other products, allows user-assisted attackers to cause a denial of service (application crash) by loading an XM file.
*** Bug 190283 has been marked as a duplicate of this bug. ***
*** Bug 212852 has been marked as a duplicate of this bug. ***
The patches for these seem to be at, http://cvs.fedoraproject.org/viewvc/rpms/libmikmod/devel/
*libmikmod-3.2.0_beta2-r1 (03 Jan 2010) 03 Jan 2010; Samuli Suominen <ssuominen@gentoo.org> +libmikmod-3.2.0_beta2-r1.ebuild, +files/libmikmod-CVE-2007-6720.patch, +files/libmikmod-CVE-2009-0179.patch: Fix security bug #255363 (CVE-2007-6720 and CVE-2009-0179). This can go stable.
x86 stable
Marked ppc/ppc64 stable.
Stable for HPPA.
Stable on alpha.
arm/ia64/sh/sparc stable
amd64 stable, all arches done.
It's an application crash only: closing noglsa. Feel free to reopen if you think this needs a GLSA.
