aru Posted July 24, 2003 Report Share Posted July 24, 2003 MandrakeSoft Security Advisory MDKSA-2003:078 : mpg123 July 23rd, 2003 Updated mpg123 packages fix vulnerability A vulnerability in the mpg123 mp3 player could allow local and/or remote attackers to cause a DoS and possibly execute arbitrary code via an mp3 file with a zero bitrate, which causes a negative frame size. The released versions of Mandrake GNU/Linux affected are: 9.0 [*] 9.1 [*] Corporate Server 2.1 Full information about this advisory, including the updated packages, is available at: www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2003:078 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?n...e=CAN-2003-0577 http://online.securityfocus.com/bid/6629 Posted automatically by aru (mdksec2mub v0.0.6) Link to comment Share on other sites More sharing options...
Recommended Posts