mpg123 Incorrect Framesize Calculation Memory Corruption Vulnerability

Threat level definition

mpg123 Incorrect Framesize Calculation Memory Corruption Vulnerability

Solution:
Mandrake has released a security advisory (MDKSA-2003:078) to address this issue. Affected users are advised to apply the fixes as soon as possible. Further information regarding obtaining and applying fixes can be found in the referenced advisory. Fixes are linked below.

Fixes available:

mpg123 mpg123 0.59 r

Conectiva mpg123-0.59r-5U70_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/7.0/RPMS/mpg123-0.59r-5U70_1cl.i38 6.rpm

Conectiva mpg123-0.59r-7U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/mpg123-0.59r-7U80_1cl.i386. rpm

Mandrake mpg123-0.59r-17.1mdk.i586.rpm
Corporate 2.1
http://www.mandrakesecure.net/en/ftp.php

Mandrake mpg123-0.59r-17.1mdk.i586.rpm
Mandrake Linux 9.0
http://www.mandrakesecure.net/en/ftp.php

Mandrake mpg123-0.59r-17.1mdk.i586.rpm
Mandrake Linux 9.1
http://www.mandrakesecure.net/en/ftp.php

Mandrake mpg123-0.59r-17.1mdk.ppc.rpm
Mandrake Linux 9.1/PPC
http://www.mandrakesecure.net/en/ftp.php

Mandrake mpg123-0.59r-17.1mdk.src.rpm
Corporate 2.1
http://www.mandrakesecure.net/en/ftp.php

Mandrake mpg123-0.59r-17.1mdk.src.rpm
Mandrake Linux 9.0
http://www.mandrakesecure.net/en/ftp.php

Mandrake mpg123-0.59r-17.1mdk.src.rpm
Mandrake Linux 9.1
http://www.mandrakesecure.net/en/ftp.php

Mandrake mpg123-0.59r-17.1mdk.src.rpm
Mandrake Linux 9.1/PPC
http://www.mandrakesecure.net/en/ftp.php

Mandrake mpg123-0.59r-17.1mdk.src.rpm
x86_64 Corporate 2.1
http://www.mandrakesecure.net/en/ftp.php

Mandrake mpg123-0.59r-17.1mdk.x86_64.rpm
x86_64 Corporate 2.1
http://www.mandrakesecure.net/en/ftp.php

Privacy Statement
Copyright 2008, SecurityFocus