CVE-2006-1514

NameCVE-2006-1514
DescriptionMultiple buffer overflows in the abcmidi-yaps translator in abcmidi 20050101, and other versions, allow remote attackers to execute arbitrary code via crafted ABC music files that trigger the overflows during translation into PostScript.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-1043-1
NVD severityhigh

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
abcmidi (PTS)stretch20170101-1fixed
buster20190101-1fixed
bullseye, sid20200809-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
abcmidisourcewoody17-1woody1DSA-1043-1
abcmidisourcesarge20050101-1sarge1DSA-1043-1
abcmidisource(unstable)20060422-1

Search for package or bug name: Reporting problems