CVE-2006-1514

NameCVE-2006-1514
DescriptionMultiple buffer overflows in the abcmidi-yaps translator in abcmidi 20050101, and other versions, allow remote attackers to execute arbitrary code via crafted ABC music files that trigger the overflows during translation into PostScript.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-1043-1
NVD severityhigh (attack range: remote)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
abcmidi (PTS)wheezy20070318-2fixed
jessie20141016-1fixed
stretch20170101-1fixed
buster, sid20170718-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
abcmidisource(unstable)20060422-1high
abcmidisourcesarge20050101-1sarge1highDSA-1043-1
abcmidisourcewoody17-1woody1highDSA-1043-1

Search for package or bug name: Reporting problems