[28463] in bugtraq
Re: Local/remote mpg123 exploit
daemon@ATHENA.MIT.EDU (Daniel Kobras)
Fri Jan 17 11:58:30 2003
Date: Wed, 15 Jan 2003 22:19:12 +0100
To: bugtraq@securityfocus.com
Message-ID: <20030115211911.GC4584@neljae>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="DocE+STaALJfprDB"
Content-Disposition: inline
In-Reply-To: <200301131823.h0DINJbE014752@mailserver3.hushmail.com>
From: Daniel Kobras <kobras@tat.physik.uni-tuebingen.de>
--DocE+STaALJfprDB
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Hi!
I'd like to stress that the mpg123 exploit posted recently does not
affect versions up to 0.59r. The vulnerable code was added as part of
a rewrite of mpg123's prefetch. CVS checkouts after Oct. 25th, 2000
will be affected, as is the pre0.59s development snapshot. There has
been no stable release in that timeframe.
The exploitable code is accompanied by the following entry to CHANGES, by
the way:
- major change in the stream reader: support for free format
streams and better 'resync-on-error'. May still contain some bugs, so
please TEST and TEST and TEST ;)
Anyway, if you're running 0.59r, you're not vulnerable. (Well, not to
this exploit, at least.)
Regards,
Daniel.
--DocE+STaALJfprDB
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+JdBPpOKIA4m/fisRAkyFAJwO9XK65s6beYNmLyXd5FmRWoINuACgkCvE
m1reXlQDdVSZVZN5uas1HFY=
=hGiw
-----END PGP SIGNATURE-----
--DocE+STaALJfprDB--
