CVE-2006-1655

EPSS 1.00%

mpg123 - buffer overflow

Published: 4/6/2006Modified: 4/28/2026

Also known as:DEBIAN-CVE-2006-1655

Description

Multiple buffer overflows in mpg123 0.59r allow user-assisted attackers to trigger a segmentation fault and possibly have other impacts via a certain MP3 file, as demonstrated by mpg1DoS3. NOTE: this issue might be related to CVE-2004-0991, but it is not clear.

Affected packages (3)

Debian/mp3gainfrom 0, < 1.5.2-r2-6
Debian/mpg123from 0, < 0.59r-22
Debian/mpg123from 0, < 0.59r-20sarge1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-1655