Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-2751-1:537A5
HistorySep 04, 2013 - 8:43 p.m.

[SECURITY] [DSA 2751-1] libmodplug security update

2013-09-0420:43:27
lists.debian.org
10

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.428 Medium

EPSS

Percentile

97.4%

JSON

Debian Security Advisory DSA-2751-1 [email protected]
http://www.debian.org/security/ Raphael Geissert
September 04, 2013 http://www.debian.org/security/faq

Package : libmodplug
Vulnerability : several
Problem type : local (remote)
Debian-specific: no
CVE ID : CVE-2013-4233 CVE-2013-4234

Several vulnerabilities have been discovered in libmodplug, a library for
mod music based on ModPlug, that might allow arbitrary code execution
when processing specially-crafted ABC files through applications using
the library, such as media players.

For the oldstable distribution (squeeze), these problems have been fixed in
version 1:0.8.8.1-1+squeeze2+git20130828.

For the stable distribution (wheezy), these problems have been fixed in
version 1:0.8.8.4-3+deb7u1+git20130828.

For the testing distribution (jessie), these problems will be fixed
soon.

For the unstable distribution (sid), these problems have been fixed in
version 1:0.8.8.4-4.

We recommend that you upgrade your libmodplug packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian6sparclibmodplug1< 1:0.8.8.1-1+squeeze2+git20130828libmodplug1_1:0.8.8.1-1+squeeze2+git20130828_sparc.deb
Debian7ia64libmodplug1< 1:0.8.8.4-3+deb7u1+git20130828libmodplug1_1:0.8.8.4-3+deb7u1+git20130828_ia64.deb
Debian7mipsellibmodplug1< 1:0.8.8.4-3+deb7u1+git20130828libmodplug1_1:0.8.8.4-3+deb7u1+git20130828_mipsel.deb
Debian7armellibmodplug1< 1:0.8.8.4-3+deb7u1+git20130828libmodplug1_1:0.8.8.4-3+deb7u1+git20130828_armel.deb
Debian7s390xlibmodplug1< 1:0.8.8.4-3+deb7u1+git20130828libmodplug1_1:0.8.8.4-3+deb7u1+git20130828_s390x.deb
Debian6ia64libmodplug1< 1:0.8.8.1-1+squeeze2+git20130828libmodplug1_1:0.8.8.1-1+squeeze2+git20130828_ia64.deb
Debian7alllibmodplug< 1:0.8.8.4-3+deb7u1+git20130828libmodplug_1:0.8.8.4-3+deb7u1+git20130828_all.deb
Debian6i386libmodplug1< 1:0.8.8.1-1+squeeze2+git20130828libmodplug1_1:0.8.8.1-1+squeeze2+git20130828_i386.deb
Debian6alllibmodplug< 1:0.8.8.1-1+squeeze2+git20130828libmodplug_1:0.8.8.1-1+squeeze2+git20130828_all.deb
Debian6mipsellibmodplug1< 1:0.8.8.1-1+squeeze2+git20130828libmodplug1_1:0.8.8.1-1+squeeze2+git20130828_mipsel.deb
Rows per page:
1-10 of 281

Related

nessus 7
openvas 9
gentoo 1
fedora 2
securityvulns 2
mageia 1
nvd 2
cve 2
checkpoint_advisories 1
prion 2
cvelist 2
debiancve 2
ubuntucve 2
nessus
nessus
Fedora 19 : libmodplug-0.8.8.5-1.fc19 (2014-3791)
2014-03-22 00:00:00
Fedora 20 : libmodplug-0.8.8.5-1.fc20 (2014-3795)
2014-03-22 00:00:00
SUSE SLED12 / SLES12 Security Update : libmodplug (SUSE-SU-2018:1441-1)
2018-05-29 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201408-07
2015-09-29 00:00:00
Fedora Update for libmodplug FEDORA-2014-3791
2014-03-25 00:00:00
Debian Security Advisory DSA 2751-1 (libmodplug - several vulnerabilities)
2013-09-04 00:00:00
gentoo
gentoo
ModPlug XMMS Plugin: Multiple vulnerabilities
2014-08-16 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: libmodplug-0.8.8.5-1.fc20
2014-03-21 09:24:22
[SECURITY] Fedora 19 Update: libmodplug-0.8.8.5-1.fc19
2014-03-21 09:38:31
securityvulns
securityvulns
[SECURITY] [DSA 2751-1] libmodplug security update
2013-09-09 00:00:00
libmodplug security vulnerabilities
2013-09-09 00:00:00
mageia
mageia
Updated libmodplug packages fixes security vulnerabilities
2013-09-14 00:05:16
nvd
nvd
CVE-2013-4234
2013-09-16 19:14:39
CVE-2013-4233
2013-09-16 19:14:38
cve
cve
CVE-2013-4233
2022-10-03 16:14:57
CVE-2013-4234
2013-09-16 19:14:39
checkpoint_advisories
checkpoint_advisories
VLC Media Player ABC File Parsing Buffer Overflow - Ver2 (CVE-2013-4233)
2014-12-28 00:00:00
prion
prion
Heap overflow
2013-09-16 19:14:00
Integer overflow
2013-09-16 19:14:00
cvelist
cvelist
CVE-2013-4234
2013-09-16 19:00:00
CVE-2013-4233
2022-10-03 16:14:57
debiancve
debiancve
CVE-2013-4234
2013-09-16 19:14:39
CVE-2013-4233
2022-10-03 16:14:57
ubuntucve
ubuntucve
CVE-2013-4234
2013-09-16 00:00:00
CVE-2013-4233
2013-09-16 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.428 Medium

EPSS

Percentile

97.4%

JSON
Related for DEBIAN:DSA-2751-1:537A5
nessus7openvas9gentoo1fedora2securityvulns2mageia1nvd2cve2checkpoint_advisories1prion2cvelist2debiancve2ubuntucve2