Summary: | media-libs/libmikmod: DoS when loading multiple music files with varying channels (CVE-2007-6720,CVE-2009-0179) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Matti Bickel (RETIRED) <mabi> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | Dem, scratch, sound |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=461519 | ||
Whiteboard: | B3 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Matti Bickel (RETIRED)
2009-01-18 10:45:28 UTC
We can include the debian patch or wait for upstream it seems. Can you confirm and provide an updated ebuild, sound herd? You might also want to check bug #252950 . CVE-2007-6720 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6720): libmikmod 3.1.9 through 3.2.0, as used by MikMod, SDL-mixer, and possibly other products, relies on the channel count of the last loaded song, rather than the currently playing song, for certain playback calculations, which allows user-assisted attackers to cause a denial of service (application crash) by loading multiple songs (aka MOD files) with different numbers of channels. CVE-2009-0179 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0179): libmikmod 3.1.11 through 3.2.0, as used by MikMod and possibly other products, allows user-assisted attackers to cause a denial of service (application crash) by loading an XM file. *** Bug 190283 has been marked as a duplicate of this bug. *** *** Bug 212852 has been marked as a duplicate of this bug. *** The patches for these seem to be at, http://cvs.fedoraproject.org/viewvc/rpms/libmikmod/devel/ *libmikmod-3.2.0_beta2-r1 (03 Jan 2010) 03 Jan 2010; Samuli Suominen <ssuominen@gentoo.org> +libmikmod-3.2.0_beta2-r1.ebuild, +files/libmikmod-CVE-2007-6720.patch, +files/libmikmod-CVE-2009-0179.patch: Fix security bug #255363 (CVE-2007-6720 and CVE-2009-0179). This can go stable. x86 stable Marked ppc/ppc64 stable. Stable for HPPA. Stable on alpha. arm/ia64/sh/sparc stable amd64 stable, all arches done. It's an application crash only: closing noglsa. Feel free to reopen if you think this needs a GLSA. |