CVE-2016-9960: Divide by Zero
First published: Tue Jun 06 2017(Updated: )
game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and process crash).
Credit: security@debian.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| game-music-emu | <=0.6.0 | |
| Red Hat Fedora | =24 | |
| Red Hat Fedora | =25 | |
| SUSE Linux | =42.2 | |
| openSUSE Leap | =42.1 | |
| SUSE Linux Enterprise Software Development Kit | =12.0-sp1 | |
| SUSE Linux Enterprise Desktop | =12.0-sp1 | |
| SUSE Linux Enterprise Desktop | =12.0-sp2 | |
| SUSE Linux Enterprise Server | =12.0-sp1 | |
| SUSE Linux Enterprise Server | =12.0-sp2 | |
| SUSE Linux Enterprise Server | =12.0-sp2 | |
| SUSE Linux Enterprise Software Development Kit | =12.0-sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00090.html
- http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00005.html
- http://www.openwall.com/lists/oss-security/2016/12/15/11
- http://www.securityfocus.com/bid/95305
- https://bitbucket.org/mpyne/game-music-emu/wiki/Home
- https://bugzilla.redhat.com/show_bug.cgi?id=1405423
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6LKMKVYS7AVB2EXC463FUYN6C6FABHME/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7Z2OVERYM6NW3FGVGTJUNSL5ZNFSH2S/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GGHAQI5Q2XDSPGRRKPJJM3A73VWAFSFL/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QHFKIFSFIDXOKFUKAH2MBNXDTY6DYBF6/
- https://scarybeastsecurity.blogspot.in/2016/12/redux-compromising-linux-using-snes.html
- https://security.gentoo.org/glsa/201707-02
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GGHAQI5Q2XDSPGRRKPJJM3A73VWAFSFL/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7Z2OVERYM6NW3FGVGTJUNSL5ZNFSH2S/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6LKMKVYS7AVB2EXC463FUYN6C6FABHME/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QHFKIFSFIDXOKFUKAH2MBNXDTY6DYBF6/
Frequently Asked Questions
What is the severity of CVE-2016-9960?
CVE-2016-9960 has a severity rating that indicates it can lead to a denial of service due to a division by zero error causing a process crash.
How do I fix CVE-2016-9960?
To fix CVE-2016-9960, upgrade to game-music-emu version 0.6.1 or later, which resolves the vulnerability.
What systems are affected by CVE-2016-9960?
CVE-2016-9960 affects game-music-emu versions prior to 0.6.1 and specific Fedora and openSUSE distributions.
Can CVE-2016-9960 be exploited remotely?
CVE-2016-9960 is a local privilege escalation vulnerability, meaning it requires local access to the affected system to exploit.
What are the consequences of exploiting CVE-2016-9960?
Exploiting CVE-2016-9960 can lead to a denial of service, resulting in application crashes and potential disruption of services.
- agent/type
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/weakness
- agent/author
- collector/nvd-api
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/game-music-emu project
- canonical/game-music-emu
- version/game-music-emu/0.6.0
- vendor/fedoraproject
- canonical/red hat fedora
- version/red hat fedora/24
- version/red hat fedora/25
- vendor/opensuse
- canonical/suse linux
- version/suse linux/42.2
- vendor/opensuse project
- canonical/opensuse leap
- version/opensuse leap/42.1
- vendor/novell
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/12.0-sp1
- canonical/suse linux enterprise desktop
- version/suse linux enterprise desktop/12.0-sp1
- version/suse linux enterprise desktop/12.0-sp2
- canonical/suse linux enterprise server
- version/suse linux enterprise server/12.0-sp1
- version/suse linux enterprise server/12.0-sp2
- version/suse linux enterprise software development kit/12.0-sp2