Candidate: CVE-2013-4234
PublicDate: 2013-09-16 19:14:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4234
Description:
 Multiple heap-based buffer overflows in the (1) abc_MIDI_drum and (2)
 abc_MIDI_gchord functions in load_abc.cpp in libmodplug 0.8.8.4 and earlier
 allow remote attackers to cause a denial of service (memory corruption and
 crash) and possibly execute arbitrary code via a crafted ABC.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719462
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_libmodplug:
upstream_libmodplug: not-affected (1:0.8.8.4-4.1)
lucid_libmodplug: ignored (reached end-of-life)
precise_libmodplug: ignored (reached end-of-life)
precise/esm_libmodplug: DNE (precise was needed)
quantal_libmodplug: ignored (reached end-of-life)
raring_libmodplug: ignored (reached end-of-life)
saucy_libmodplug: ignored (reached end-of-life)
trusty_libmodplug: not-affected (1:0.8.8.4-4.1)
trusty/esm_libmodplug: not-affected (1:0.8.8.4-4.1)
utopic_libmodplug: ignored (reached end-of-life)
vivid_libmodplug: ignored (reached end-of-life)
vivid/stable-phone-overlay_libmodplug: DNE
vivid/ubuntu-core_libmodplug: DNE
wily_libmodplug: ignored (reached end-of-life)
xenial_libmodplug: not-affected (1:0.8.8.5-2)
yakkety_libmodplug: ignored (reached end-of-life)
zesty_libmodplug: ignored (reached end-of-life)
artful_libmodplug: ignored (reached end-of-life)
bionic_libmodplug: not-affected (1:0.8.9.0-1)
devel_libmodplug: not-affected (1:0.8.9.0-2)

Patches_gst-plugins-bad0.10:
upstream_gst-plugins-bad0.10: needs-triage
lucid_gst-plugins-bad0.10: not-affected (uses system libmodplug)
precise_gst-plugins-bad0.10: not-affected (uses system libmodplug)
precise/esm_gst-plugins-bad0.10: DNE (precise was not-affected [uses system libmodplug])
quantal_gst-plugins-bad0.10: not-affected (uses system libmodplug)
raring_gst-plugins-bad0.10: not-affected (uses system libmodplug)
saucy_gst-plugins-bad0.10: not-affected (uses system libmodplug)
trusty_gst-plugins-bad0.10: not-affected (uses system libmodplug)
trusty/esm_gst-plugins-bad0.10: DNE (trusty was not-affected [uses system libmodplug])
utopic_gst-plugins-bad0.10: not-affected (uses system libmodplug)
vivid_gst-plugins-bad0.10: not-affected (uses system libmodplug)
vivid/stable-phone-overlay_gst-plugins-bad0.10: DNE
vivid/ubuntu-core_gst-plugins-bad0.10: DNE
wily_gst-plugins-bad0.10: not-affected (uses system libmodplug)
xenial_gst-plugins-bad0.10: DNE
yakkety_gst-plugins-bad0.10: DNE
zesty_gst-plugins-bad0.10: DNE
artful_gst-plugins-bad0.10: DNE
bionic_gst-plugins-bad0.10: DNE
devel_gst-plugins-bad0.10: DNE