MDKSA-2007:071
- Package name
- xmms
- Date
- 2007-03-29
- Advisory ID
- MDKSA-2007:071
- Affected versions
- CS3.0 i586 , CS3.0 x86_64
Problem description
Integer overflow in X MultiMedia System (xmms) 1.2.10, and possibly
other versions, allows user-assisted remote attackers to execute
arbitrary code via crafted header information in a skin bitmap image,
which triggers memory corruption. (CVE-2007-0653)
Integer underflow in X MultiMedia System (xmms) 1.2.10 allows
user-assisted remote attackers to execute arbitrary code via crafted
header information in a skin bitmap image, which results in a stack-
based buffer overflow. (CVE-2007-0654)
Updated packages have been patched to correct these issues.
Updated packages
CS3.0 i586
e4e2ea4b6fafc1a9f1c04b90dfbd44ec corporate/3.0/i586/libxmms1-1.2.9-5.1.C30mdk.i586.rpm f1123705c241b9f68346f6a31eeb6ae6 corporate/3.0/i586/libxmms1-devel-1.2.9-5.1.C30mdk.i586.rpm 3a50d813a088920e00da2141cc2f8930 corporate/3.0/i586/xmms-1.2.9-5.1.C30mdk.i586.rpm fcc8444b30c3bb08f4a341edac0128ff corporate/3.0/i586/xmms-alsa-1.2.9-5.1.C30mdk.i586.rpm 79adbc46d0403e30204a48ba5c5b7b5c corporate/3.0/i586/xmms-diskwriter-1.2.9-5.1.C30mdk.i586.rpm fd70b57aa74d0ab85879f37eeb65f077 corporate/3.0/i586/xmms-esd-1.2.9-5.1.C30mdk.i586.rpm 2cbdff97924f5f36abb6928d1e5c66a5 corporate/3.0/i586/xmms-mesa-1.2.9-5.1.C30mdk.i586.rpm 7b26d8e89bd3218a3e914bafab0f26ea corporate/3.0/i586/xmms-mikmod-1.2.9-5.1.C30mdk.i586.rpm 99e91ac3f68cdff18d4930c26f96e864 corporate/3.0/SRPMS/xmms-1.2.9-5.1.C30mdk.src.rpm
CS3.0 x86_64
709d0a91c3405d75188028e26d7b933c corporate/3.0/x86_64/lib64xmms1-1.2.9-5.1.C30mdk.x86_64.rpm 37de4ecd6aa2c70065f39e1d0f0f2cf3 corporate/3.0/x86_64/lib64xmms1-devel-1.2.9-5.1.C30mdk.x86_64.rpm f78f2fd4b3af81d953ed5d5103b1633d corporate/3.0/x86_64/xmms-1.2.9-5.1.C30mdk.x86_64.rpm 2d51b31f0be010a46a49c1ab76f3106d corporate/3.0/x86_64/xmms-alsa-1.2.9-5.1.C30mdk.x86_64.rpm aaf48a4d11b6c72faa74d5cd68e32f98 corporate/3.0/x86_64/xmms-diskwriter-1.2.9-5.1.C30mdk.x86_64.rpm a0984dcc9099a5ba602c0553e782ffff corporate/3.0/x86_64/xmms-esd-1.2.9-5.1.C30mdk.x86_64.rpm 9c1e5c6380330195f4ba76f48a752d5c corporate/3.0/x86_64/xmms-mesa-1.2.9-5.1.C30mdk.x86_64.rpm 69af4c915f6f9db9353b388c7ca133f8 corporate/3.0/x86_64/xmms-mikmod-1.2.9-5.1.C30mdk.x86_64.rpm 99e91ac3f68cdff18d4930c26f96e864 corporate/3.0/SRPMS/xmms-1.2.9-5.1.C30mdk.src.rpm