ALT-PU-2018-3685-1

CVE-2016-9960

MEDIUM5.5

game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and process crash).

Published: 2017-06-06Modified: 2025-04-20

CVSS 2.0LOW 2.1

CVSS:2.0/AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS 3.xMEDIUM 5.5

CVSS:3.x/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

References

http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00090.html
http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00005.html
http://www.openwall.com/lists/oss-security/2016/12/15/11
http://www.securityfocus.com/bid/95305
https://bitbucket.org/mpyne/game-music-emu/wiki/Home
https://bugzilla.redhat.com/show_bug.cgi?id=1405423
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6LKMKVYS7AVB2EXC463FUYN6C6FABHME/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7Z2OVERYM6NW3FGVGTJUNSL5ZNFSH2S/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GGHAQI5Q2XDSPGRRKPJJM3A73VWAFSFL/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QHFKIFSFIDXOKFUKAH2MBNXDTY6DYBF6/
https://scarybeastsecurity.blogspot.in/2016/12/redux-compromising-linux-using-snes.html
https://security.gentoo.org/glsa/201707-02
http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00090.html
http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00005.html
http://www.openwall.com/lists/oss-security/2016/12/15/11
http://www.securityfocus.com/bid/95305
https://bitbucket.org/mpyne/game-music-emu/wiki/Home
https://bugzilla.redhat.com/show_bug.cgi?id=1405423
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6LKMKVYS7AVB2EXC463FUYN6C6FABHME/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7Z2OVERYM6NW3FGVGTJUNSL5ZNFSH2S/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GGHAQI5Q2XDSPGRRKPJJM3A73VWAFSFL/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QHFKIFSFIDXOKFUKAH2MBNXDTY6DYBF6/
https://scarybeastsecurity.blogspot.in/2016/12/redux-compromising-linux-using-snes.html
https://security.gentoo.org/glsa/201707-02

Package update libgme in branch sisyphus

Closed issues (5)

Stack-based buffer overflow in game-music-emu before 0.6.1.

game-music-emu before 0.6.1 allows remote attackers to write to arbitrary memory locations.

game-music-emu before 0.6.1 allows remote attackers to generate out of bounds 8-bit values.

game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and process crash).

game-music-emu before 0.6.1 mishandles unspecified integer values.