(RHSA-2010:0720) Moderate: mikmod security update

2010-09-2800:00:00

access.redhat.com

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.185 Low

EPSS

Percentile

95.7%

JSON

MikMod is a MOD music file player for Linux, UNIX, and similar operating
systems. It supports various file formats including MOD, STM, S3M, MTM, XM,
ULT, and IT.

Multiple input validation flaws, resulting in buffer overflows, were
discovered in MikMod. Specially-crafted music files in various formats
could, when played, cause an application using the MikMod library to crash
or, potentially, execute arbitrary code. (CVE-2009-3995, CVE-2009-3996,
CVE-2007-6720)

All MikMod users should upgrade to these updated packages, which contain
backported patches to correct these issues. All running applications using
the MikMod library must be restarted for this update to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat5x86_64mikmod-devel< 3.1.6-39.el5_5.1mikmod-devel-3.1.6-39.el5_5.1.x86_64.rpm
RedHat5s390mikmod< 3.1.6-39.el5_5.1mikmod-3.1.6-39.el5_5.1.s390.rpm
RedHat4x86_64mikmod-devel< 3.1.6-33.el4_8.1mikmod-devel-3.1.6-33.el4_8.1.x86_64.rpm
RedHat5ppc64mikmod-devel< 3.1.6-39.el5_5.1mikmod-devel-3.1.6-39.el5_5.1.ppc64.rpm
RedHat4srcmikmod< 3.1.6-33.el4_8.1mikmod-3.1.6-33.el4_8.1.src.rpm
RedHat5s390xmikmod< 3.1.6-39.el5_5.1mikmod-3.1.6-39.el5_5.1.s390x.rpm
RedHat4s390mikmod< 3.1.6-33.el4_8.1mikmod-3.1.6-33.el4_8.1.s390.rpm
RedHat4i386mikmod< 3.1.6-33.el4_8.1mikmod-3.1.6-33.el4_8.1.i386.rpm
RedHat4i386mikmod-devel< 3.1.6-33.el4_8.1mikmod-devel-3.1.6-33.el4_8.1.i386.rpm
RedHat4s390xmikmod< 3.1.6-33.el4_8.1mikmod-3.1.6-33.el4_8.1.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	5	x86_64	mikmod-devel	< 3.1.6-39.el5_5.1	mikmod-devel-3.1.6-39.el5_5.1.x86_64.rpm
RedHat	5	s390	mikmod	< 3.1.6-39.el5_5.1	mikmod-3.1.6-39.el5_5.1.s390.rpm
RedHat	4	x86_64	mikmod-devel	< 3.1.6-33.el4_8.1	mikmod-devel-3.1.6-33.el4_8.1.x86_64.rpm
RedHat	5	ppc64	mikmod-devel	< 3.1.6-39.el5_5.1	mikmod-devel-3.1.6-39.el5_5.1.ppc64.rpm
RedHat	4	src	mikmod	< 3.1.6-33.el4_8.1	mikmod-3.1.6-33.el4_8.1.src.rpm
RedHat	5	s390x	mikmod	< 3.1.6-39.el5_5.1	mikmod-3.1.6-39.el5_5.1.s390x.rpm
RedHat	4	s390	mikmod	< 3.1.6-33.el4_8.1	mikmod-3.1.6-33.el4_8.1.s390.rpm
RedHat	4	i386	mikmod	< 3.1.6-33.el4_8.1	mikmod-3.1.6-33.el4_8.1.i386.rpm
RedHat	4	i386	mikmod-devel	< 3.1.6-33.el4_8.1	mikmod-devel-3.1.6-33.el4_8.1.i386.rpm
RedHat	4	s390x	mikmod	< 3.1.6-33.el4_8.1	mikmod-3.1.6-33.el4_8.1.s390x.rpm