Lucene search

GoogleOSV:DSA-320

HistoryJun 13, 2003 - 12:00 a.m.

mikmod - buffer overflow

2003-06-1300:00:00

Google

osv.dev

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

Ingo Saitz discovered a bug in mikmod whereby a long filename inside
an archive file can overflow a buffer when the archive is being read
by mikmod.

For the stable distribution (woody) this problem has been fixed in
version 3.1.6-4woody3.

For old stable distribution (potato) this problem has been fixed in
version 3.1.6-2potato3.

For the unstable distribution (sid) this problem is fixed in version
3.1.6-6.

We recommend that you update your mikmod package.

References

www.debian.org/security/2003/dsa-320

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

Related for OSV:DSA-320