9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.185 Low
EPSS
Percentile
95.7%
MikMod is a MOD music file player for Linux, UNIX, and similar operating
systems. It supports various file formats including MOD, STM, S3M, MTM, XM,
ULT, and IT.
Multiple input validation flaws, resulting in buffer overflows, were
discovered in MikMod. Specially-crafted music files in various formats
could, when played, cause an application using the MikMod library to crash
or, potentially, execute arbitrary code. (CVE-2009-3995, CVE-2009-3996,
CVE-2007-6720)
All MikMod users should upgrade to these updated packages, which contain
backported patches to correct these issues. All running applications using
the MikMod library must be restarted for this update to take effect.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | x86_64 | mikmod-devel | < 3.1.6-39.el5_5.1 | mikmod-devel-3.1.6-39.el5_5.1.x86_64.rpm |
RedHat | 5 | s390 | mikmod | < 3.1.6-39.el5_5.1 | mikmod-3.1.6-39.el5_5.1.s390.rpm |
RedHat | 4 | x86_64 | mikmod-devel | < 3.1.6-33.el4_8.1 | mikmod-devel-3.1.6-33.el4_8.1.x86_64.rpm |
RedHat | 5 | ppc64 | mikmod-devel | < 3.1.6-39.el5_5.1 | mikmod-devel-3.1.6-39.el5_5.1.ppc64.rpm |
RedHat | 4 | src | mikmod | < 3.1.6-33.el4_8.1 | mikmod-3.1.6-33.el4_8.1.src.rpm |
RedHat | 5 | s390x | mikmod | < 3.1.6-39.el5_5.1 | mikmod-3.1.6-39.el5_5.1.s390x.rpm |
RedHat | 4 | s390 | mikmod | < 3.1.6-33.el4_8.1 | mikmod-3.1.6-33.el4_8.1.s390.rpm |
RedHat | 4 | i386 | mikmod | < 3.1.6-33.el4_8.1 | mikmod-3.1.6-33.el4_8.1.i386.rpm |
RedHat | 4 | i386 | mikmod-devel | < 3.1.6-33.el4_8.1 | mikmod-devel-3.1.6-33.el4_8.1.i386.rpm |
RedHat | 4 | s390x | mikmod | < 3.1.6-33.el4_8.1 | mikmod-3.1.6-33.el4_8.1.s390x.rpm |