Ubuntu
alsaplayer package

CVE-2007-5301 buffer overflow in vorbis input plugi

Bug #151806 reported by Emmet Hikory
274
Affects Status Importance Assigned to Milestone
alsaplayer (Debian)
Fix Released
Unknown
alsaplayer (Ubuntu)
Fix Released
Undecided
Luke Yelavich
Dapper
Invalid
Undecided
Unassigned
Edgy
Won't Fix
Undecided
Unassigned
Feisty
Won't Fix
Undecided
Unassigned

Bug Description

Binary package hint: alsaplayer

The following was released on:
http://secunia.com/advisories/27117/

| Some vulnerabilities have been reported in AlsaPlayer, which potentially can be
| exploited by malicious people to compromise a user's system.
|
| The vulnerabilities are caused due to boundary errors in the vorbis input
| plug-in when processing .OGG files. These can be exploited to cause buffer
| overflows via a specially crafted .OGG file with overly long comments.
|
| Successful exploitation may allow execution of arbitrary code.

Patch available from http://alsaplayer.svn.sourceforge.net/viewvc/alsaplayer/trunk/alsaplayer/input/vorbis/vorbis_engine.c?r1=1252&r2=1287

Tags: patch

CVE References

Luke Yelavich (themuso)
Changed in alsaplayer:
assignee: nobody → themuso
status: New → In Progress
Revision history for this message
Luke Yelavich (themuso) wrote :

alsaplayer (0.99.79-3ubuntu1) gutsy; urgency=low

  * SECURITY UPDATE: Buffer overflow in vorbis input plugin (LP: #151806)
  * References: CVE-2007-5301
  * Update maintainer field as per spec.

 -- Luke Yelavich <email address hidden> Fri, 12 Oct 2007 12:26:33 +1000

Changed in alsaplayer:
status: In Progress → Fix Released
Bug Watch Updater (bug-watch-updater)
Changed in alsaplayer:
status: Unknown → Fix Released
Revision history for this message
Jouni Mettala (jouni-mettala) wrote :

Bug #117395 has been marked as duplicate of this bug. Crash is fixed in Gutsy. Security issues probably remain in dapper edgy and feisty.

Revision history for this message
Hew (hew) wrote :

Ubuntu Edgy Eft is no longer supported, so a SRU will not be issued for this release. Marking Edgy as Won't Fix.

Changed in alsaplayer:
status: New → Won't Fix
Revision history for this message
LumpyCustard (orangelumpycustard) wrote :

Please close for Feisty as Won't Fix? This goes for all the other Feisty bugs.

Revision history for this message
Hew (hew) wrote :

Ubuntu Feisty Fawn is no longer supported, so a SRU will not be issued for this release. Marking Feisty as Won't Fix.

Changed in alsaplayer:
status: New → Won't Fix
Revision history for this message
Saivann Carignan (oxmosys) wrote :

Dapper is not supported anymore since July 2009, therefore I mark Dapper status to invalid.

Changed in alsaplayer (Ubuntu Dapper):
status: New → Invalid
Revision history for this message
Artur Rona (ari-tczew) wrote :

Dapper server support is until June 2011, so it can be fixed.

Changed in alsaplayer (Ubuntu Dapper):
status: Invalid → New
Revision history for this message
Artur Rona (ari-tczew) wrote :

Dapper Desktop support being discontinued due to End of Life.

Changed in alsaplayer (Ubuntu Dapper):
status: New → Invalid
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.