CVE-2013-1980

Publication date 11 February 2014

Last updated 24 July 2024

Ubuntu priority

Description

Buffer overflow in the get_dsmp function in loaders/masi_load.c in libxmp before 4.1.0 allows remote attackers to execute arbitrary code via a crafted MASI file.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
xmp	13.10 saucy	Not affected
	13.04 raring	Fixed 3.4.0-1.1ubuntu1.1
	12.10 quantal	Fixed 3.4.0-1ubuntu2.12.10.1
	12.04 LTS precise	Fixed 3.4.0-1ubuntu2.12.04.1
	11.10 oneiric	Ignored end of life
	10.04 LTS lucid	Ignored end of life
	8.04 LTS hardy	Ignored end of life

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

http://www.openwall.com/lists/oss-security/2013/04/22
https://www.cve.org/CVERecord?id=CVE-2013-1980