Package name
libmodplug
Date
2009-12-03
Advisory ID
MDVSA-2009:128-1
Affected versions
2008.0 i586 , 2008.0 x86_64

Problem description

Multiple security vulnerabilities has been identified and fixed
in libmodplug:

Integer overflow in the CSoundFile::ReadMed function (src/load_med.cpp)
in libmodplug before 0.8.6, as used in gstreamer-plugins and other
products, allows context-dependent attackers to execute arbitrary
code via a MED file with a crafted (1) song comment or (2) song name,
which triggers a heap-based buffer overflow (CVE-2009-1438).

Buffer overflow in the PATinst function in src/load_pat.cpp in
libmodplug before 0.8.7 allows user-assisted remote attackers to
cause a denial of service and possibly execute arbitrary code via a
long instrument name (CVE-2009-1513).

The updated packages have been patched to prevent this.

Update:

Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers

Updated packages

2008.0 i586

 9d7e4ce45987f8103e6e68ff6a789afa  2008.0/i586/libmodplug0-0.8.4-1.1mdv2008.0.i586.rpm
 65ca878fccad537bd0dcc8e7b6156d3a  2008.0/i586/libmodplug0-devel-0.8.4-1.1mdv2008.0.i586.rpm 
 496719add48603cf87e3a27025b5dabb  2008.0/SRPMS/libmodplug-0.8.4-1.1mdv2008.0.src.rpm

2008.0 x86_64

 4e456e05bc59c08a0a0adaf7a2ccce37  2008.0/x86_64/lib64modplug0-0.8.4-1.1mdv2008.0.x86_64.rpm
 389e7edbacb029bcd9afef7cf4a9ba0e  2008.0/x86_64/lib64modplug0-devel-0.8.4-1.1mdv2008.0.x86_64.rpm 
 496719add48603cf87e3a27025b5dabb  2008.0/SRPMS/libmodplug-0.8.4-1.1mdv2008.0.src.rpm

References