ALSA-2024:11242

[ALSA-2024:11242] Moderate: mpg123:1.32.9 security update

Type:

security

Severity:

moderate

Release date:

2024-12-23

Description:

The mpg123 packages contain real time MPEG 1.0/2.0/2.5 audio player/decoder for layers 1, 2, and 3 (most commonly MPEG 1.0 layer 3 also known as MP3), as well as re-usable decoding and output libraries.  

Security Fix(es):  

  * mpg123: Buffer overflow when writing decoded PCM samples (CVE-2024-10573)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	mpg123-devel-1.32.9-1.el9_5.aarch64.rpm	1d00811a6c89529967381c5a4e1c261f51bb0f3fb59605d6f29d085e68a8c61b
aarch64	mpg123-plugins-pulseaudio-1.32.9-1.el9_5.aarch64.rpm	7bb48774698c07f766f42af13026639b2c7525430727a63458360b0733a51afb
aarch64	mpg123-1.32.9-1.el9_5.aarch64.rpm	bba97649e3385b15f837f6ecd10e455714b7af7b045c5ac1b1cce43c5fcbe0b0
aarch64	mpg123-libs-1.32.9-1.el9_5.aarch64.rpm	c0d29aff85068907f6d4747fa2348eac71410409449b6a221e58e809e1d4dc7f
i686	mpg123-devel-1.32.9-1.el9_5.i686.rpm	379c8e3f43f5318af9adb2187df10d1b21790e6da39914b774f925c2c5ea1b1f
i686	mpg123-libs-1.32.9-1.el9_5.i686.rpm	ae2a046537f0248fbee85e21ecf0638d0516f20dc301125878d73f8022b88b51
ppc64le	mpg123-libs-1.32.9-1.el9_5.ppc64le.rpm	15af4823678ae360a7e475bf190531519087f4e5fb95c124676d17f861940fce
ppc64le	mpg123-devel-1.32.9-1.el9_5.ppc64le.rpm	554af9f5ad656fbd03531cf8f7b51cc4a2d0eb0f98c153e354eaa30b6e6baafc
ppc64le	mpg123-1.32.9-1.el9_5.ppc64le.rpm	ae7392e2e36a97f10218d29050d5af9c378cd7048c3f0153f5fa772afaec3b4b
ppc64le	mpg123-plugins-pulseaudio-1.32.9-1.el9_5.ppc64le.rpm	e5c183ebb2bae19228cba1522cf7ff000297704b424720f7e1d3396212944458
s390x	mpg123-devel-1.32.9-1.el9_5.s390x.rpm	6af2f4becf6a9e89719cadd8c4d0c881e14bdfdc36837008d4f239aa6925781a
s390x	mpg123-libs-1.32.9-1.el9_5.s390x.rpm	709b566334b05def0afcf5a86bdc515d2440a6d41838383d92c70246cd4a4ec2
s390x	mpg123-1.32.9-1.el9_5.s390x.rpm	b4515f909da304828e66ce669c0ba0995d1c03050d2103182e5f646a1e48dad7
s390x	mpg123-plugins-pulseaudio-1.32.9-1.el9_5.s390x.rpm	cf30e2e7e671d47f3981c6e5208e49579061ebdf80f6bf671875f049b7f0274b
x86_64	mpg123-libs-1.32.9-1.el9_5.x86_64.rpm	18fcfecf53a1c5c6054519bdd03f0ba2cba2b0e70c5554d3433b97750e7867d2
x86_64	mpg123-plugins-pulseaudio-1.32.9-1.el9_5.x86_64.rpm	875436e9b226a1a4807cf4b86f27d7564fa4948fb3ce62f8cb5125ab1dcde08f
x86_64	mpg123-1.32.9-1.el9_5.x86_64.rpm	a767d7add43520e5f9d45be066f87be9396518a120c0ba278d2cf8bbf0a289b2
x86_64	mpg123-devel-1.32.9-1.el9_5.x86_64.rpm	e43a6cf4a538b1941fa57edca69cafa9d39c81572df919c670ac3dc3c140e221

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.