Secunia Logo
 Vulnerability IntelligenceVulnerability ScanningCommunity - new!Blog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Debian update for mpg123
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Debian update for mpg123
Secunia Advisory: SA20275
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2006-05-25
Popularity: 5,359 views

Critical:
Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch

OS:Debian GNU/Linux 3.1
Debian GNU/Linux unstable alias sid
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2006-1655
Description:
Debian has issued an update for mpg123. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.

For more information:
SA20240

Solution:
Apply updated packages.

-- Debian GNU/Linux 3.1 alias sarge --

Source archives:

http://security.debian.org/pool/updat...ee/m/mpg123/mpg123_0.59r-20sarge1.dsc
Size/MD5 checksum: 751 ba026638de21be9fa5061056bd53a43d
http://security.debian.org/pool/updat.../mpg123/mpg123_0.59r-20sarge1.diff.gz
Size/MD5 checksum: 41527 3119adeed1228f6bd10c3f7100a308e0
http://security.debian.org/pool/updat...ree/m/mpg123/mpg123_0.59r.orig.tar.gz
Size/MD5 checksum: 159028 95df59ad1651dd2346d49fafc83747e7

Alpha architecture:

http://security.debian.org/pool/updat...pg123/mpg123_0.59r-20sarge1_alpha.deb
Size/MD5 checksum: 124974 b9ea8480d28e09e27673072ade3021e3
http://security.debian.org/pool/updat...3/mpg123-esd_0.59r-20sarge1_alpha.deb
Size/MD5 checksum: 124814 55e68e2a8a4ad452d9078d26550fcd3b

ARM architecture:

http://security.debian.org/pool/updat.../mpg123/mpg123_0.59r-20sarge1_arm.deb
Size/MD5 checksum: 102068 82ab3c03fc9256ad5e5049152a8c00fc

Intel IA-32 architecture:

http://security.debian.org/pool/updat...mpg123/mpg123_0.59r-20sarge1_i386.deb
Size/MD5 checksum: 87160 a072702eaf20b77fd0438ffeb28eede9
http://security.debian.org/pool/updat...23/mpg123-esd_0.59r-20sarge1_i386.deb
Size/MD5 checksum: 87232 54462dbc34ad9fbbfce90fec5608e79f
http://security.debian.org/pool/updat...23/mpg123-nas_0.59r-20sarge1_i386.deb
Size/MD5 checksum: 90148 c4d04e08d4326ec2e734675922dd8f61
http://security.debian.org/pool/updat...123-oss-3dnow_0.59r-20sarge1_i386.deb
Size/MD5 checksum: 90392 e8166266d16a7f503547217a58d871bb
http://security.debian.org/pool/updat...g123-oss-i486_0.59r-20sarge1_i386.deb
Size/MD5 checksum: 93850 e7b3d76e2e011f2f6e70630e0cb15737

HP Precision architecture:

http://security.debian.org/pool/updat...mpg123/mpg123_0.59r-20sarge1_hppa.deb
Size/MD5 checksum: 101702 5f04ef0d8a5ae5c30f3acdc0c00b0927

Motorola 680x0 architecture:

http://security.debian.org/pool/updat...mpg123/mpg123_0.59r-20sarge1_m68k.deb
Size/MD5 checksum: 80232 e81a61a8c84c0a776655501b3cfff93c

PowerPC architecture:

http://security.debian.org/pool/updat...123/mpg123_0.59r-20sarge1_powerpc.deb
Size/MD5 checksum: 96536 cf2cf30c6c4d4b912c4585979c823eab
http://security.debian.org/pool/updat...mpg123-esd_0.59r-20sarge1_powerpc.deb
Size/MD5 checksum: 98058 04843c3a016782384e2dc5ae987a365d

Sun Sparc architecture:

http://security.debian.org/pool/updat...pg123/mpg123_0.59r-20sarge1_sparc.deb
Size/MD5 checksum: 91586 3cc30d3290684dbce40e71acec6202ad

-- Debian GNU/Linux unstable alias sid --

Fixed in version 0.59r-22.

Original Advisory:
http://www.us.debian.org/security/2006/dsa-1074

Other References:
SA20240:
http://secunia.com/advisories/20240/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

1st Dec, 2008
New advisories: 33
New vulnerabilities: 55
Updated advisories: 56

Moderately // 248 views
RakhiSoftware Shopping Cart Multiple Vulnerabilities
Moderately // 248 views
Lito Lite CMS "cid" SQL Injection Vulnerability
Moderately // 262 views
Basic PHP CMS "id" SQL Injection Vulnerability
Less // 491 views
Microsoft Office Communications Server SIP INVITE Denial of Service
Moderately // 255 views
Bluo CMS "id" SQL Injection Vulnerability
Moderately // 276 views
Active eWebquiz "useremail" and "password" SQL Injection Vulnerabilities
Highly // 265 views
Minimal Ablog Multiple Vulnerabilities
Moderately // 270 views
Active Newsletter "email" and "password" SQL Injection Vulnerabilities
Moderately // 270 views
Ocean12 FAQ Manager Pro "ID" SQL Injection Vulnerability
Moderately // 288 views
Active Photo Gallery "username" and "password" SQL Injection

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. VLC Media Player Real Demuxer Integer Overflow Vulnerability // 93 views
2. Sun Java JDK / JRE Multiple Vulnerabilities // 66 views
3. Microsoft Office Communications Server SIP INVITE Denial of Service // 54 views
4. Slackware update for ruby // 38 views
5. ASPReferral "AccountID" SQL Injection Vulnerability // 38 views
6. Ocean12 FAQ Manager Pro "ID" SQL Injection Vulnerability // 38 views
7. Debian update for wireshark // 37 views
8. phpBB Cross Site Scripting and Unspecified Vulnerabilities // 37 views
9. Basic PHP CMS "id" SQL Injection Vulnerability // 37 views
10. Active Trade "username" and "password" SQL Injection Vulnerabilities // 37 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008