Debian DSA-2415-1 : libmodplug - several vulnerabilities

Several vulnerabilities that can lead to the execution of arbitrary code have been discovered in libmodplug, a library for MOD music based on ModPlug. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2011-1761 epiphant discovered that the abc file parser is...

[SECURITY] [DSA 2415-1] libmodplug security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2415-1 [email protected] http://www.debian.org/security/ Nico Golde February 21, 2012 http://www.debian.org/security/faq -...

DSA-2415-1 libmodplug - several

Bulletin has no description...

[USN-1255-1] libmodplug vulnerabilities

========================================================================== Ubuntu Security Notice USN-1255-1 November 09, 2011 libmodplug vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivative...

libmodplug library multiple security vulnerabilities

Memory corruptions on different media formats...

Ubuntu Update for libmodplug USN-1255-1

Ubuntu Update for Linux kernel vulnerabilities USN-1255-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12551.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for libmodplug USN-1255-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net...

Ubuntu: Security Advisory (USN-1255-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : libmodplug vulnerabilities (USN-1255-1)

Hossein Lotfi discovered that libmodplug did not correctly handle certain malformed media files. If a user or automated system were tricked into opening a crafted media file, an attacker could cause a denial of service or possibly execute arbitrary code with privileges of the user invoking the...

USN-1255-1: libmodplug vulnerabilities

Hossein Lotfi discovered that libmodplug did not correctly handle certain malformed media files. If a user or automated system were tricked into opening a crafted media file, an attacker could cause a denial of service or possibly execute arbitrary code with privileges of the user invoking the...

CVE-2011-2911

Integer overflow in the CSoundFile::ReadWav function in src/loadwav.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted WAV file, which triggers a heap-based buffer overflow...

CVE-2011-2913

Off-by-one error in the CSoundFile::ReadAMS function in src/loadams.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service stack memory corruption and possibly execute arbitrary code via a crafted AMS file with a large number of samples...

CVE-2011-2915

Off-by-one error in the CSoundFile::ReadAMS2 function in src/loadams.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code via a crafted AMS file with a large number of instruments...

CVE-2011-2912

Stack-based buffer overflow in the CSoundFile::ReadS3M function in src/loads3m.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted S3M file with an invalid offset...

CVE-2011-2914

Off-by-one error in the CSoundFile::ReadDSM function in src/loaddms.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code via a crafted DSM file with a large number of samples...

Fedora 16 : audacious-plugins-3.0.2-2.fc16 (2011-12322)

Merge changes from pre-3.0.3 git, such as using the system's libmodplug library. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

RedHat Update for gstreamer-plugins RHSA-2011:1264-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 15 : audacious-plugins-2.5.4-2.fc15 (2011-12350)

Patch to use the system's libmodplug library. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

CentOS 4 : gstreamer-plugins (CESA-2011:1264)

Updated gstreamer-plugins packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

gstreamer security update

CentOS Errata and Security Advisory CESA-2011:1264 Updated gstreamer-plugins packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring Syst...

RHEL 4 : gstreamer-plugins (RHSA-2011:1264)

Updated gstreamer-plugins packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...