Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 620516 (CVE-2016-9957, CVE-2016-9958, CVE-2016-9959, CVE-2016-9960, CVE-2016-9961) - [TRACKER] media-libs/game-music-emu: multiple vulnerabilities
Summary: [TRACKER] media-libs/game-music-emu: multiple vulnerabilities
Status: RESOLVED FIXED
Alias: CVE-2016-9957, CVE-2016-9958, CVE-2016-9959, CVE-2016-9960, CVE-2016-9961
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL:
Whiteboard:
Keywords: Tracker
Depends on: 603092 618346
Blocks:
  Show dependency tree
 
Reported: 2017-06-03 14:50 UTC by GLSAMaker/CVETool Bot
Modified: 2018-01-21 02:53 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2017-06-03 14:50:05 UTC 
CVE-2016-9957 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-9957):
  Stack-based buffer overflow in game-music-emu before 0.6.1.

CVE-2016-9958 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-9958):
  game-music-emu before 0.6.1 allows remote attackers to write to arbitrary
  memory locations.

CVE-2016-9959 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-9959):
  game-music-emu before 0.6.1 allows remote attackers to generate out of
  bounds 8-bit values.

CVE-2016-9960 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-9960):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.

CVE-2016-9961 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-9961):
  ** RESERVED ** This candidate has been reserved by an organization or
  individual that will use it when announcing a new security problem. When the
  candidate has been publicized, the details for this candidate will be
  provided.
Comment 1 Aaron Bauman (RETIRED) gentoo-dev 2018-01-21 02:53:37 UTC 
All dependent bugs closed.