Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  NEWS  community  lists  Wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Password Recovery Resources on the Net
[<prev] [next>] [month] [year] [list] 
Date: Tue, 13 Jan 2009 15:41:50 +0100
From: Jan Lieskovsky <jlieskov@...hat.com>
To: "Steven M. Christey" <coley@...us.mitre.org>
Cc: oss-security@...ts.openwall.com
Subject: CVE Request -- libmikmod

Hello Steve,

  could you please allocate two 2008 CVE ids for the following
libmikmod issues:

A, 
mikmod, libmikmod: app crash or abort when loading/playing multiple
music files with varying number of channels
References:
https://bugzilla.redhat.com/show_bug.cgi?id=479829
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=461519

Patch:
http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=5;filename=mikmod.diff;att=1;bug=461519

Affected libmikmod versions:  libmikmod-3.1.9 <= x <= libmikmod-3.2.0-3.beta2.fc9 (possibly newer too)

B, 
mikmod,libmikmod: app crash when loading XM files
References:
https://bugzilla.redhat.com/show_bug.cgi?id=479833
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476339

Patch: 
http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=5;filename=31.xm-header.patch;att=1;bug=476339

Affected mikmod versions: libmikmod-3.1.11 <= x libmikmod-3.2.0-3.beta2.fc9 (possibly newer too)

Thanks, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ