EUVD-2007-6684

Malware in sbrugna...

SUSE CVE-2007-6720

libmikmod 3.1.9 through 3.2.0, as used by MikMod, SDL-mixer, and possibly other products, relies on the channel count of the last loaded song, rather than the currently playing song, for certain playback calculations, which allows user-assisted attackers to cause a denial of service application...

Security update for schismtracker (important)

openSUSE Security Update: Security update for schismtracker Announcement ID: openSUSE-SU-2019:2019-1 Rating: important References: 1144261 1144266 Cross-References: CVE-2019-14523 CVE-2019-14524 Affected Products: openSUSE Backports SLE-15-SP1 openSUSE Backports SLE-15 An update that fixes two...

openSUSE Security Update : schismtracker (openSUSE-2019-1994)

This update for schismtracker fixes the following issues : The following security issues were fixed : - CVE-2019-14523: Fixed an integer underflow in the Amiga Oktalyzer parser boo1144266. - CVE-2019-14524: Fixed a heap overflow in the MTM loader boo1144261. The following non-security issues were...

openSUSE: Security Advisory for schismtracker (openSUSE-SU-2019:1994-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for schismtracker (important)

openSUSE Security Update: Security update for schismtracker Announcement ID: openSUSE-SU-2019:1994-1 Rating: important References: 1144261 1144266 Cross-References: CVE-2019-14523 CVE-2019-14524 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes two vulnerabilities is n...

PHP 'ext/session/mod_files.c' Buffer Overflow Vulnerability

PHP is an open source general-purpose computer scripting language. A buffer overflow vulnerability exists in PHP 'ext/session/modfiles.c', which allows attackers to exploit the vulnerability to execute arbitrary script code or cause a denial of service...

Mandrake Security Advisory MDVSA-2009:272 (libmikmod)

The remote host is missing an update to libmikmod announced via advisory MDVSA-2009:272. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

SuSE 10 Security Update : libmikmod (ZYPP Patch Number 6034)

Specially crafted XM files or playing mod files with varying number of channels could crash applications using libmikmod. CVE-2009-0179 / CVE-2007-6720 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...

openSUSE Security Update : libmikmod (libmikmod-570)

Specially crafted XM files or playing mod files with varying number of channels could crash applications using libmikmod CVE-2009-0179, CVE-2007-6720. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...

Mandriva Linux Security Advisory : xine-lib (MDVSA-2009:020)

Failure on Ogg files manipulation can lead remote attackers to cause a denial of service by using crafted files CVE-2008-3231. Failure on manipulation of either MNG or Real or MOD files can lead remote attackers to cause a denial of service by using crafted files CVE: CVE-2008-5233. Heap-based...

Code injection

libmikmod 3.1.9 through 3.2.0, as used by MikMod, SDL-mixer, and possibly other products, relies on the channel count of the last loaded song, rather than the currently playing song, for certain playback calculations, which allows user-assisted attackers to cause a denial of service application...

CVE-2007-6720

CVE-2007-6720 affects libmikmod versions 3.1.9–3.2.0 used by MikMod, SDL-mixer, and potentially other products. The issue is a logic flaw where playback calculations rely on the channel count of the last loaded song rather than the currently playing one, enabling a user-assisted attacker to cause...

CVE-2006-2537

Multiple format string vulnerabilities in a OpenBOR 2.0046 and earlier, b Beats of Rage BOR 1.0029 and earlier, and c Horizontal Shooter BOR HOR 2.0000 and earlier allow remote attackers to execute code via format string specifiers in configurations used in various mod files, as demonstrated by t...

CVE-2006-2537

CVE-2006-2537 affects OpenBOR 2.0046 and earlier, Beats of Rage (BOR) 1.0029 and earlier, and Horizontal Shooter BOR (HOR) 2.0000 and earlier. The issue is multiple format string vulnerabilities in configuration handling (data/scenes/intro.txt and data/easy/1aeasy.txt) that are not properly proce...

CVE-2006-2537

Multiple format string vulnerabilities in a OpenBOR 2.0046 and earlier, b Beats of Rage BOR 1.0029 and earlier, and c Horizontal Shooter BOR HOR 2.0000 and earlier allow remote attackers to execute code via format string specifiers in configurations used in various mod files, as demonstrated by t...