LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

libmikmod: two denial of service vulnerabilities

Package(s):libmikmod CVE #(s):CVE-2007-6720 CVE-2009-0179
Created:August 31, 2009 Updated:October 11, 2010
Description:

From the Red Hat bugzilla entries [1 and 2]:

CVE-2009-0179: A denial of service flaw was found in the MikMod player, used for playing MOD files. If an attacker would trick the mikmod user to load an XM file, this could lead to denial of service (application crash).

CVE-2007-6720: A denial of service flaw was found in the MikMod player, used for playing MOD files. If an attacker would trick the mikmod user to play multiple MOD using files with varying number of channels, this could lead to denial of service (application crash or abort).

Alerts:
Ubuntu USN-995-1 2010-09-29
Red Hat RHSA-2010:0720-01 2010-09-28
CentOS CESA-2010:0720 2010-10-10
CentOS CESA-2010:0720 2010-09-29
CentOS CESA-2010:0720 2010-09-29
Mandriva MDVSA-2009:272-1 2009-12-05
Fedora FEDORA-2009-9112 2009-08-28
Fedora FEDORA-2009-9095 2009-08-28
Mandriva MDVSA-2009:272 2009-10-12
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds