Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 11: FEDORA-2009-8445 Critical libvorbis DoS Threat

fedora
Calendar Grey August 10, 2009
Dist Fedora Esm H88
An update for Fedora 11 has addressed the codec header vulnerability in libvorbis that could lead to Denial of Service (DoS). Install this fix promptly via yum
Fixes CVE-2009-2663

Summary

Ogg Vorbis is a fully open, non-proprietary, patent- and royalty-free,

general-purpose compressed audio format for audio and music at fixed

and variable bitrates from 16 to 128 kbps/channel.

The libvorbis package contains runtime libraries for use in programs

that support Ogg Vorbis.

Update Information:

Fixes CVE-2009-2663

Topics%20covered

Topics Covered

security advisory Fedora security fix DoS threat libvorbis

Change Log

* Fri Aug 7 2009 Jindrich Novy 1.2.0-8 - fix CVE-2009-2663 (#516259)

References


[ 1 ] Bug #516259 - CVE-2009-2663 libvorbis: Improper codec headers processing (DoS, ACE) https://bugzilla.redhat.com/show_bug.cgi?id=516259

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libvorbis' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libvorbis
Product: Fedora 11
Version: 1.2.0
Release: 8.fc11
URL: https://www.xiph.org/
Summary: The Vorbis General Audio Compression Codec.

Topics%20covered

Topics Covered

security advisory Fedora security fix DoS threat libvorbis

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here