LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Advisory Watch: September 19th, 2014
Linux Security Week: September 15th, 2014
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Debian: 2081-1: libmikmod: buffer overflow Print E-mail
User Rating:      How can I rate this item?
Posted by Benjamin D. Thomas   
Debian Tomas Hoger discovered that the upstream fix for CVE-2009-3995 was insufficient. This update provides a corrected package. For the stable distribution (lenny), this problem has been fixed in [More...]
- ------------------------------------------------------------------------
Debian Security Advisory DSA-2081-1                  security@debian.org
http://www.debian.org/security/                       Moritz Muehlenhoff
August 01, 2010                       http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package        : libmikmod
Vulnerability  : buffer overflow
Problem type   : local(remote)
Debian-specific: no
CVE Id(s)      : CVE-2010-2546

Tomas Hoger discovered that the upstream fix for CVE-2009-3995 was
insufficient. This update provides a corrected package.

For the stable distribution (lenny), this problem has been fixed in
version 3.1.11-6.0.1+lenny1.

For the unstable distribution (sid), these problems have been fixed in
version 3.1.11-6.3.

We recommend that you upgrade your libmikmod packages.

Upgrade instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 5.0 alias lenny
- --------------------------------

Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod_3.1.11-6.0.1+lenny1.diff.gz
    Size/MD5 checksum:   336967 ca68ebbfb298a9c14a336cc5f7b6e2be
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod_3.1.11.orig.tar.gz
    Size/MD5 checksum:   611590 705106da305e8de191549f1e7393185c
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod_3.1.11-6.0.1+lenny1.dsc
    Size/MD5 checksum:     1054 3adf23f76d6b836353eb083894b2edda

alpha architecture (DEC Alpha)

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_alpha.deb
    Size/MD5 checksum:   378792 9b14009df43780c2ab59a463166ebb79
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_alpha.deb
    Size/MD5 checksum:   221884 a42979a1da367c4f69900d3bf1ae9b39

amd64 architecture (AMD x86_64 (AMD64))

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_amd64.deb
    Size/MD5 checksum:   157322 ce474be591039ff4be7d5ee135843826
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_amd64.deb
    Size/MD5 checksum:   265884 110914191600ae14129f7eb19d0b1bcd

arm architecture (ARM)

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_arm.deb
    Size/MD5 checksum:   264304 826fb250128a4b1ae4e162905511325c
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_arm.deb
    Size/MD5 checksum:   164188 fe126f9049055da0488c99c0a1302188

armel architecture (ARM EABI)

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_armel.deb
    Size/MD5 checksum:   156030 fc6c72a6f744a7a91d4bf03ff80d05aa
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_armel.deb
    Size/MD5 checksum:   254782 a87e79aff815b07d268e72ce3339580a

hppa architecture (HP PA RISC)

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_hppa.deb
    Size/MD5 checksum:   185908 bfd2bef7c32052a0e86034fb1b53c842
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_hppa.deb
    Size/MD5 checksum:   299318 cbc4ccf6d266dba38584d207264ad01c

i386 architecture (Intel ia32)

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_i386.deb
    Size/MD5 checksum:   244670 b1b25246bbbd3cf9a7da0c69e2f4f2d0
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_i386.deb
    Size/MD5 checksum:   147386 a12b38dc7073d64ff37c6703815bc116

ia64 architecture (Intel ia64)

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_ia64.deb
    Size/MD5 checksum:   264660 4a4051d527d120ffd545a0c088c483f0
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_ia64.deb
    Size/MD5 checksum:   395202 1f1f581e859df98e23ef05ba53fe68a8

mipsel architecture (MIPS (Little Endian))

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_mipsel.deb
    Size/MD5 checksum:   291244 d9d41f15a064b0dd9735c7ae0a998478
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_mipsel.deb
    Size/MD5 checksum:   167322 a810e2fff330cfe4fe7fb0c16670bac2

powerpc architecture (PowerPC)

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_powerpc.deb
    Size/MD5 checksum:   173252 32d48dbf160ac85e0568daf8533699fc
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_powerpc.deb
    Size/MD5 checksum:   282846 5b9e5173f1d5ee31cbad0b62bba66a25

s390 architecture (IBM S/390)

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_s390.deb
    Size/MD5 checksum:   268638 a741a17fd11d265fff8420e4aaf34b62
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_s390.deb
    Size/MD5 checksum:   172640 552690944cf6a7657a6ac226a3196230

sparc architecture (Sun SPARC/UltraSPARC)

  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2_3.1.11-a-6.0.1+lenny1_sparc.deb
    Size/MD5 checksum:   150000 67f1bbe7204ac9fa77210a8d060b8a52
  http://security.debian.org/pool/updates/main/libm/libmikmod/libmikmod2-dev_3.1.11-a-6.0.1+lenny1_sparc.deb
    Size/MD5 checksum:   258350 16e8bd8c040d866080500a904129a77c


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
 
< Prev   Next >
    
Partner

 

Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.