MDKSA-2006:092

Package name

mpg123

Date

2006-05-26

Advisory ID

MDKSA-2006:092

Affected versions

CS3.0 i586 , 2006.0 i586 , 2006.0 x86_64 , CS3.0 x86_64

Problem description

An unspecified vulnerability in mpg123 0.59r allows user-complicit
attackers to trigger a segmentation fault and possibly have other impacts
via a certain MP3 file, as demonstrated by mpg1DoS3.

Packages have been patched to correct this issue.

Updated packages

CS3.0 i586

 529769657e10f16a5b33e24d4d4c33e6  corporate/3.0/RPMS/mpg123-0.59r-22.3.C30mdk.i586.rpm
 7577161720deea5dd3fc87b38e5e096e  corporate/3.0/SRPMS/mpg123-0.59r-22.3.C30mdk.src.rpm

2006.0 i586

 3e3dcfc54cb168f7eb6b325e7c83a574  2006.0/RPMS/mpg123-0.59r-23.1.20060mdk.i586.rpm
 518f076afb71d5f5b66093f9494bf7cf  2006.0/SRPMS/mpg123-0.59r-23.1.20060mdk.src.rpm

2006.0 x86_64

 8102eaf3b00119bbd4f52df6f4737979  x86_64/2006.0/RPMS/mpg123-0.59r-23.1.20060mdk.x86_64.rpm
 518f076afb71d5f5b66093f9494bf7cf  x86_64/2006.0/SRPMS/mpg123-0.59r-23.1.20060mdk.src.rpm

CS3.0 x86_64

 2bd6ba7d63eac96a9397fe38fe00d059  x86_64/corporate/3.0/RPMS/mpg123-0.59r-22.3.C30mdk.x86_64.rpm
 7577161720deea5dd3fc87b38e5e096e  x86_64/corporate/3.0/SRPMS/mpg123-0.59r-22.3.C30mdk.src.rpm

References

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1655