libmodplug 's3m' Remote Buffer Overflow Vulnerability
BID:30801
Info
libmodplug 's3m' Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 30801 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2009-1438 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 25 2008 12:00AM |
| Updated: | Dec 07 2009 08:44PM |
| Credit: | dummy |
| Vulnerable: |
Ubuntu Ubuntu Linux 9.04 sparc Ubuntu Ubuntu Linux 9.04 powerpc Ubuntu Ubuntu Linux 9.04 lpia Ubuntu Ubuntu Linux 9.04 i386 Ubuntu Ubuntu Linux 9.04 amd64 Ubuntu Ubuntu Linux 8.10 sparc Ubuntu Ubuntu Linux 8.10 powerpc Ubuntu Ubuntu Linux 8.10 lpia Ubuntu Ubuntu Linux 8.10 i386 Ubuntu Ubuntu Linux 8.10 amd64 Ubuntu Ubuntu Linux 8.04 LTS sparc Ubuntu Ubuntu Linux 8.04 LTS powerpc Ubuntu Ubuntu Linux 8.04 LTS lpia Ubuntu Ubuntu Linux 8.04 LTS i386 Ubuntu Ubuntu Linux 8.04 LTS amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 TTPlayer TTPlayer 5.2 S.u.S.E. openSUSE 11.1 S.u.S.E. openSUSE 11.0 S.u.S.E. Novell Linux Desktop 9.0 S.u.S.E. Novell Linux Desktop 9 Red Hat Fedora 9 Red Hat Fedora 10 Pardus Linux 2008 0 Mandriva Linux Mandrake 2009.1 x86_64 Mandriva Linux Mandrake 2009.1 Mandriva Linux Mandrake 2009.0 x86_64 Mandriva Linux Mandrake 2009.0 Mandriva Linux Mandrake 2008.1 x86_64 Mandriva Linux Mandrake 2008.1 Mandriva Linux Mandrake 2008.0 x86_64 Mandriva Linux Mandrake 2008.0 libmodplug libmodplug 0.8.4 libmodplug libmodplug 0.8 GStreamer gst-plugins-bad 0.10.8 Gentoo Linux Debian Linux 5.0 sparc Debian Linux 5.0 s/390 Debian Linux 5.0 powerpc Debian Linux 5.0 mipsel Debian Linux 5.0 mips Debian Linux 5.0 m68k Debian Linux 5.0 ia-64 Debian Linux 5.0 ia-32 Debian Linux 5.0 hppa Debian Linux 5.0 armel Debian Linux 5.0 arm Debian Linux 5.0 amd64 Debian Linux 5.0 alpha Debian Linux 5.0 Debian Linux 4.0 sparc Debian Linux 4.0 s/390 Debian Linux 4.0 powerpc Debian Linux 4.0 mipsel Debian Linux 4.0 mips Debian Linux 4.0 m68k Debian Linux 4.0 ia-64 Debian Linux 4.0 ia-32 Debian Linux 4.0 hppa Debian Linux 4.0 armel Debian Linux 4.0 arm Debian Linux 4.0 amd64 Debian Linux 4.0 alpha Debian Linux 4.0 |
| Not Vulnerable: |
libmodplug libmodplug 0.8.6 |
Discussion
libmodplug 's3m' Remote Buffer Overflow Vulnerability
The libmodplug library is prone to a remote buffer-overflow vulnerability because the software fails to perform adequate boundary checks on user-supplied data.
An attacker can exploit this issue to execute arbitrary code with the privileges of the user running an application that relies on the affected library. Failed exploit attempts will result in a denial-of-service condition.
This issue affects versions prior to libmodplug 0.8.6. Since the library is used in multiple other projects (such as TTPlayer and gst-plugins-bad), other applications and versions may also be vulnerable.
The libmodplug library is prone to a remote buffer-overflow vulnerability because the software fails to perform adequate boundary checks on user-supplied data.
An attacker can exploit this issue to execute arbitrary code with the privileges of the user running an application that relies on the affected library. Failed exploit attempts will result in a denial-of-service condition.
This issue affects versions prior to libmodplug 0.8.6. Since the library is used in multiple other projects (such as TTPlayer and gst-plugins-bad), other applications and versions may also be vulnerable.
Exploit / POC
libmodplug 's3m' Remote Buffer Overflow Vulnerability
NOTE: On August 22, 2008, Symantec observed active, in-the-wild exploits of this issue targeting TTPlayer via a web-based attack.
The following proof of concept is available:
NOTE: On August 22, 2008, Symantec observed active, in-the-wild exploits of this issue targeting TTPlayer via a web-based attack.
The following proof of concept is available:
Solution / Fix
libmodplug 's3m' Remote Buffer Overflow Vulnerability
Solution:
Updates are available. Please see the references for more information.
Debian Linux 5.0 ia-64
Ubuntu Ubuntu Linux 8.04 LTS powerpc
Ubuntu Ubuntu Linux 8.10 powerpc
Ubuntu Ubuntu Linux 8.04 LTS sparc
Ubuntu Ubuntu Linux 6.06 LTS sparc
Debian Linux 5.0 alpha
Mandriva Linux Mandrake 2008.0 x86_64
Ubuntu Ubuntu Linux 8.04 LTS amd64
Mandriva Linux Mandrake 2008.0
Debian Linux 5.0 mipsel
Ubuntu Ubuntu Linux 9.04 sparc
Ubuntu Ubuntu Linux 9.04 powerpc
libmodplug libmodplug 0.8
Debian Linux 4.0 amd64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Ubuntu Ubuntu Linux 9.04 i386
Ubuntu Ubuntu Linux 8.10 sparc
Ubuntu Ubuntu Linux 9.04 lpia
Debian Linux 4.0 armel
Debian Linux 5.0 armel
Debian Linux 5.0
Debian Linux 4.0 mipsel
Mandriva Linux Mandrake 2009.0 x86_64
Debian Linux 5.0 mips
Ubuntu Ubuntu Linux 9.04 amd64
Ubuntu Ubuntu Linux 8.10 amd64
Mandriva Linux Mandrake 2009.1
Debian Linux 4.0 ia-64
Debian Linux 4.0 mips
Debian Linux 5.0 sparc
Mandriva Linux Mandrake 2008.1 x86_64
Mandriva Linux Mandrake 2008.1
Debian Linux 4.0 arm
Mandriva Linux Mandrake 2009.1 x86_64
Ubuntu Ubuntu Linux 8.10 i386
Debian Linux 4.0 powerpc
Debian Linux 4.0 m68k
Debian Linux 5.0 ia-32
Ubuntu Ubuntu Linux 6.06 LTS powerpc
Debian Linux 5.0 s/390
Ubuntu Ubuntu Linux 8.04 LTS lpia
Ubuntu Ubuntu Linux 6.06 LTS i386
Ubuntu Ubuntu Linux 8.10 lpia
Ubuntu Ubuntu Linux 6.06 LTS amd64
Debian Linux 5.0 hppa
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 5.0 m68k
Mandriva Linux Mandrake 2009.0
Debian Linux 5.0 arm
Debian Linux 4.0 alpha
Ubuntu Ubuntu Linux 8.04 LTS i386
Debian Linux 4.0
Debian Linux 5.0 amd64
Debian Linux 5.0 powerpc
libmodplug libmodplug 0.8.4
Solution:
Updates are available. Please see the references for more information.
Debian Linux 5.0 ia-64
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_ia64.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_ia64.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_ia64.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_ia64.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_ia64.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_ia64.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_ia64.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_ia64.deb
Ubuntu Ubuntu Linux 8.04 LTS powerpc
-
Ubuntu libmodplug-dev_0.7-7ubuntu0.8.04.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-7ubuntu0.8.04.1_all.deb -
Ubuntu libmodplug0c2_0.7-7ubuntu0.8.04.1_powerpc.deb
http://ports.ubuntu.com/pool/main/libm/libmodplug/libmodplug0c2_0.7-7u buntu0.8.04.1_powerpc.deb
Ubuntu Ubuntu Linux 8.10 powerpc
-
Ubuntu libmodplug-dev_0.7-7ubuntu0.8.10.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-7ubuntu0.8.10.1_all.deb -
Ubuntu libmodplug0c2_0.7-7ubuntu0.8.10.1_powerpc.deb
http://ports.ubuntu.com/pool/main/libm/libmodplug/libmodplug0c2_0.7-7u buntu0.8.10.1_powerpc.deb
Ubuntu Ubuntu Linux 8.04 LTS sparc
-
Ubuntu libmodplug-dev_0.7-7ubuntu0.8.04.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-7ubuntu0.8.04.1_all.deb -
Ubuntu libmodplug0c2_0.7-7ubuntu0.8.04.1_sparc.deb
http://ports.ubuntu.com/pool/main/libm/libmodplug/libmodplug0c2_0.7-7u buntu0.8.04.1_sparc.deb
Ubuntu Ubuntu Linux 6.06 LTS sparc
-
Ubuntu libmodplug-dev_0.7-5ubuntu0.6.06.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-5ubuntu0.6.06.2_all.deb -
Ubuntu libmodplug0c2_0.7-5ubuntu0.6.06.2_sparc.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug 0c2_0.7-5ubuntu0.6.06.2_sparc.deb
Debian Linux 5.0 alpha
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_alpha.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_alpha.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_alpha.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_alpha.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_alpha.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_alpha.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_alpha.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_alpha.deb
Mandriva Linux Mandrake 2008.0 x86_64
-
Mandriva lib64modplug0-0.8.4-1.1mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/ -
Mandriva lib64modplug0-devel-0.8.4-1.1mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/
Ubuntu Ubuntu Linux 8.04 LTS amd64
-
Ubuntu libmodplug-dev_0.7-7ubuntu0.8.04.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-7ubuntu0.8.04.1_all.deb -
Ubuntu libmodplug0c2_0.7-7ubuntu0.8.04.1_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug 0c2_0.7-7ubuntu0.8.04.1_amd64.deb
Mandriva Linux Mandrake 2008.0
-
Mandriva libmodplug0-0.8.4-1.1mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/ -
Mandriva libmodplug0-devel-0.8.4-1.1mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/
Debian Linux 5.0 mipsel
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_mipsel.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_mipsel.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_mipsel.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_mipsel.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_mipsel.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_mipsel.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_mipsel.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_mipsel.deb
Ubuntu Ubuntu Linux 9.04 sparc
-
Ubuntu libmodplug-dev_0.8.4-3ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.8.4-3ubuntu1.1_all.deb -
Ubuntu libmodplug0c2_0.8.4-3ubuntu1.1_sparc.deb
http://ports.ubuntu.com/pool/main/libm/libmodplug/libmodplug0c2_0.8.4- 3ubuntu1.1_sparc.deb
Ubuntu Ubuntu Linux 9.04 powerpc
-
Ubuntu libmodplug-dev_0.8.4-3ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.8.4-3ubuntu1.1_all.deb -
Ubuntu libmodplug0c2_0.8.4-3ubuntu1.1_powerpc.deb
http://ports.ubuntu.com/pool/main/libm/libmodplug/libmodplug0c2_0.8.4- 3ubuntu1.1_powerpc.deb
libmodplug libmodplug 0.8
-
libmodplug libmodplug-0.8.6.tar.gz
http://sourceforge.net/project/downloading.php?group_id=1275&filename= libmodplug-0.8.6.tar.gz
Debian Linux 4.0 amd64
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_amd64.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_amd64.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_amd64.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_amd64.deb
Debian Linux 4.0 ia-32
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_i386.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_i386.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_i386.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_i386.deb
Debian Linux 4.0 hppa
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_hppa.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_hppa.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_hppa.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_hppa.deb
Ubuntu Ubuntu Linux 9.04 i386
-
Ubuntu libmodplug-dev_0.8.4-3ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.8.4-3ubuntu1.1_all.deb -
Ubuntu libmodplug0c2_0.8.4-3ubuntu1.1_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug 0c2_0.8.4-3ubuntu1.1_i386.deb
Ubuntu Ubuntu Linux 8.10 sparc
-
Ubuntu libmodplug-dev_0.7-7ubuntu0.8.10.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-7ubuntu0.8.10.1_all.deb -
Ubuntu libmodplug0c2_0.7-7ubuntu0.8.10.1_sparc.deb
http://ports.ubuntu.com/pool/main/libm/libmodplug/libmodplug0c2_0.7-7u buntu0.8.10.1_sparc.deb
Ubuntu Ubuntu Linux 9.04 lpia
-
Ubuntu libmodplug-dev_0.8.4-3ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.8.4-3ubuntu1.1_all.deb -
Ubuntu libmodplug0c2_0.8.4-3ubuntu1.1_lpia.deb
http://ports.ubuntu.com/pool/main/libm/libmodplug/libmodplug0c2_0.8.4- 3ubuntu1.1_lpia.deb
Debian Linux 4.0 armel
-
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb
Debian Linux 5.0 armel
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_armel.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_armel.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_armel.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_armel.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_armel.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_armel.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_armel.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_armel.deb
Debian Linux 5.0
-
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb
Debian Linux 4.0 mipsel
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_mipsel.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_mipsel.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_mipsel.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_mipsel.deb
Mandriva Linux Mandrake 2009.0 x86_64
-
Mandriva lib64modplug0-0.8.4-4.1mdv2009.0.x86_64.rpm
http://www.mandriva.com/en/download/ -
Mandriva lib64modplug0-devel-0.8.4-4.1mdv2009.0.x86_64.rpm
http://www.mandriva.com/en/download/
Debian Linux 5.0 mips
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_mips.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_mips.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_mips.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_mips.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_mips.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_mips.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_mips.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_mips.deb
Ubuntu Ubuntu Linux 9.04 amd64
-
Ubuntu libmodplug-dev_0.8.4-3ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.8.4-3ubuntu1.1_all.deb -
Ubuntu libmodplug0c2_0.8.4-3ubuntu1.1_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug 0c2_0.8.4-3ubuntu1.1_amd64.deb
Ubuntu Ubuntu Linux 8.10 amd64
-
Ubuntu libmodplug-dev_0.7-7ubuntu0.8.10.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-7ubuntu0.8.10.1_all.deb -
Ubuntu libmodplug0c2_0.7-7ubuntu0.8.10.1_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug 0c2_0.7-7ubuntu0.8.10.1_amd64.deb
Mandriva Linux Mandrake 2009.1
-
Mandriva libmodplug-devel-0.8.6-1.1mdv2009.1.i586.rpm
http://www.mandriva.com/en/download/ -
Mandriva libmodplug0-0.8.6-1.1mdv2009.1.i586.rpm
http://www.mandriva.com/en/download/
Debian Linux 4.0 ia-64
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_ia64.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_ia64.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_ia64.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_ia64.deb
Debian Linux 4.0 mips
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_mips.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_mips.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_mips.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_mips.deb
Debian Linux 5.0 sparc
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_sparc.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_sparc.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_sparc.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_sparc.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_sparc.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_sparc.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_sparc.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_sparc.deb
Mandriva Linux Mandrake 2008.1 x86_64
-
Mandriva lib64modplug0-0.8.4-3.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/ -
Mandriva lib64modplug0-devel-0.8.4-3.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/
Mandriva Linux Mandrake 2008.1
-
Mandriva libmodplug0-0.8.4-3.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/ -
Mandriva libmodplug0-devel-0.8.4-3.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/
Debian Linux 4.0 arm
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_arm.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_arm.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_arm.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_arm.deb
Mandriva Linux Mandrake 2009.1 x86_64
-
Mandriva lib64modplug-devel-0.8.6-1.1mdv2009.1.x86_64.rpm
http://www.mandriva.com/en/download/ -
Mandriva lib64modplug0-0.8.6-1.1mdv2009.1.x86_64.rpm
http://www.mandriva.com/en/download/
Ubuntu Ubuntu Linux 8.10 i386
-
Ubuntu libmodplug-dev_0.7-7ubuntu0.8.10.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-7ubuntu0.8.10.1_all.deb -
Ubuntu libmodplug0c2_0.7-7ubuntu0.8.10.1_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug 0c2_0.7-7ubuntu0.8.10.1_i386.deb
Debian Linux 4.0 powerpc
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_powerpc.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_powerpc.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_powerpc.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_powerpc.deb
Debian Linux 4.0 m68k
-
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb
Debian Linux 5.0 ia-32
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_i386.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_i386.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_i386.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_i386.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_i386.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_i386.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_i386.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_i386.deb
Ubuntu Ubuntu Linux 6.06 LTS powerpc
-
Ubuntu libmodplug-dev_0.7-5ubuntu0.6.06.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-5ubuntu0.6.06.2_all.deb -
Ubuntu libmodplug0c2_0.7-5ubuntu0.6.06.2_powerpc.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug 0c2_0.7-5ubuntu0.6.06.2_powerpc.deb
Debian Linux 5.0 s/390
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_s390.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_s390.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_s390.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_s390.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_s390.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_s390.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_s390.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_s390.deb
Ubuntu Ubuntu Linux 8.04 LTS lpia
-
Ubuntu libmodplug-dev_0.7-7ubuntu0.8.04.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-7ubuntu0.8.04.1_all.deb -
Ubuntu libmodplug0c2_0.7-7ubuntu0.8.04.1_lpia.deb
http://ports.ubuntu.com/pool/main/libm/libmodplug/libmodplug0c2_0.7-7u buntu0.8.04.1_lpia.deb
Ubuntu Ubuntu Linux 6.06 LTS i386
-
Ubuntu libmodplug-dev_0.7-5ubuntu0.6.06.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-5ubuntu0.6.06.2_all.deb -
Ubuntu libmodplug0c2_0.7-5ubuntu0.6.06.2_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug 0c2_0.7-5ubuntu0.6.06.2_i386.deb
Ubuntu Ubuntu Linux 8.10 lpia
-
Ubuntu libmodplug-dev_0.7-7ubuntu0.8.10.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-7ubuntu0.8.10.1_all.deb -
Ubuntu libmodplug0c2_0.7-7ubuntu0.8.10.1_lpia.deb
http://ports.ubuntu.com/pool/main/libm/libmodplug/libmodplug0c2_0.7-7u buntu0.8.10.1_lpia.deb
Ubuntu Ubuntu Linux 6.06 LTS amd64
-
Ubuntu libmodplug-dev_0.7-5ubuntu0.6.06.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-5ubuntu0.6.06.2_all.deb -
Ubuntu libmodplug0c2_0.7-5ubuntu0.6.06.2_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug 0c2_0.7-5ubuntu0.6.06.2_amd64.deb
Debian Linux 5.0 hppa
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_hppa.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_hppa.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_hppa.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_hppa.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_hppa.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_hppa.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb
Debian Linux 4.0 sparc
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_sparc.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_sparc.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_sparc.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_sparc.deb
Debian Linux 4.0 s/390
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_s390.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_s390.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_s390.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_s390.deb
Debian Linux 5.0 m68k
-
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb
Mandriva Linux Mandrake 2009.0
-
Mandriva libmodplug0-0.8.4-4.1mdv2009.0.i586.rpm
http://www.mandriva.com/en/download/ -
Mandriva libmodplug0-devel-0.8.4-4.1mdv2009.0.i586.rpm
http://www.mandriva.com/en/download/
Debian Linux 5.0 arm
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_arm.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_arm.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_arm.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_arm.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_arm.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_arm.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_arm.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_arm.deb
Debian Linux 4.0 alpha
-
Debian gstreamer0.10-plugins-bad_0.10.3-3.1+etch3_alpha.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.3-3.1+etch3_alpha.deb -
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb -
Debian libmodplug0c2_0.7-5.2+etch1_alpha.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.7-5.2+etch1_alpha.deb
Ubuntu Ubuntu Linux 8.04 LTS i386
-
Ubuntu libmodplug-dev_0.7-7ubuntu0.8.04.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug -dev_0.7-7ubuntu0.8.04.1_all.deb -
Ubuntu libmodplug0c2_0.7-7ubuntu0.8.04.1_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/libm/libmodplug/libmodplug 0c2_0.7-7ubuntu0.8.04.1_i386.deb
Debian Linux 4.0
-
Debian libmodplug-dev_0.7-5.2+etch1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.7-5.2+etch1_all.deb
Debian Linux 5.0 amd64
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_amd64.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_amd64.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_amd64.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_amd64.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_amd64.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_amd64.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_amd64.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_amd64.deb
Debian Linux 5.0 powerpc
-
Debian gstreamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_powerpc.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-dbg_0.10.7-2+lenny2_powerpc.deb -
Debian gstreamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad-doc_0.10.7-2+lenny2_all.deb -
Debian gstreamer0.10-plugins-bad_0.10.7-2+lenny2_powerpc.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-plugins-bad_0.10.7-2+lenny2_powerpc.deb -
Debian gstreamer0.10-sdl_0.10.7-2+lenny2_powerpc.deb
http://security.debian.org/pool/updates/main/g/gst-plugins-bad0.10/gst reamer0.10-sdl_0.10.7-2+lenny2_powerpc.deb -
Debian libmodplug-dev_0.8.4-1+lenny1_all.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g-dev_0.8.4-1+lenny1_all.deb -
Debian libmodplug0c2_0.8.4-1+lenny1_powerpc.deb
http://security.debian.org/pool/updates/main/libm/libmodplug/libmodplu g0c2_0.8.4-1+lenny1_powerpc.deb
libmodplug libmodplug 0.8.4
-
libmodplug libmodplug-0.8.6.tar.gz
http://sourceforge.net/project/downloading.php?group_id=1275&filename= libmodplug-0.8.6.tar.gz
References
libmodplug 's3m' Remote Buffer Overflow Vulnerability
References:
References:
- ???? mod ???????[POC] (?? & ??'s Blog)
- ????ttp_mod.dll??med?????????? (void[at]ph4nt0m[dot]org)
- Gstreamer Bad Plug-ins Homepage (GStreamer)
- libmodplug 0.8.6 Release Notes (libmodplug)
- libmodplug Homepage (libmodplug)
- TTPlayer Homepage (TTPlayer)