Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2006-1655

Multiple buffer overflows in mpg123 0.59r allow user-assisted attackers to trigger a segmentation fault and possibly have other impacts via a certain MP3 file, as demonstrated by mpg1DoS3. NOTE: this issue might be related to CVE-2004-0991, but it is not clear.

Related bugs and status

CVE-2006-1655 (Candidate) is related to these bugs:

Bug #64924: [UVF Exception] Sync mpg123 (0.60-3) from Debian unstable (main)

Summary				In	Importance	Status
	64924	[UVF Exception] Sync mpg123 (0.60-3) from Debian unstable (main)		mpg123 (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://downloads.secur...
BID: 17365
DEBIAN: DSA-1074
SECUNIA: 20240
SECUNIA: 20275
SECUNIA: 20281
MANDRIVA: MDKSA-2006:092