Updated mp3gain packages fix security vulnerabilities
Publication date: 10 Aug 2018Modification date: 10 Aug 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2017-14406 , CVE-2017-14407 , CVE-2017-14408 , CVE-2017-14409 , CVE-2017-14410 , CVE-2017-14411 , CVE-2017-14412 , CVE-2018-10777
Description
A NULL pointer dereference was discovered in sync_buffer in interface.c
in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes
a segmentation fault and application crash, which leads to remote denial
of service (CVE-2017-14406).
A stack-based buffer over-read was discovered in filterYule in
gain_analysis.c in MP3Gain version 1.5.2. The vulnerability causes an
application crash, which leads to remote denial of service (CVE-2017-14407).
A stack-based buffer over-read was discovered in dct36 in layer3.c in
mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an
application crash, which leads to remote denial of service (CVE-2017-14408).
A buffer overflow was discovered in III_dequantize_sample in layer3.c in
mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an
out-of-bounds write, which leads to remote denial of service or possibly
code execution (CVE-2017-14409).
A buffer over-read was discovered in III_i_stereo in layer3.c in mpglibDBL,
as used in MP3Gain version 1.5.2. The vulnerability causes an application
crash, which leads to remote denial of service (CVE-2017-14410).
A stack-based buffer overflow was discovered in copy_mp in interface.c in
mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an
out-of-bounds write, which leads to remote denial of service or possibly
code execution (CVE-2017-14411).
An invalid memory write was discovered in copy_mp in interface.c in
mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a
denial of service (segmentation fault and application crash) or possibly
unspecified other impact (CVE-2017-14412).
Buffer overflow in the WriteMP3GainAPETag function in apetag.c in mp3gain
through 1.5.2-r2 allows remote attackers to cause a denial of service
(application crash) or possibly have unspecified other impact
(CVE-2018-10777).
References
- https://bugs.mageia.org/show_bug.cgi?id=21706
- https://sourceforge.net/p/mp3gain/bugs/40/
- https://sourceforge.net/p/mp3gain/bugs/41/
- https://sourceforge.net/p/mp3gain/bugs/43/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14406
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14407
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14408
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14409
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14410
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14411
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14412
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10777
SRPMS
6/core
- mp3gain-1.6.2-1.mga6