Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 11: 2009-11243 Critical Libvorbis Security Issue

fedora
Calendar Grey November 10, 2009
Dist Fedora Esm H88
Important patch for Fedora 11 libvorbis fixes CVE-2009-3379 flaws, enhances audio encoding security.
CVE-2009-3379

Summary

Ogg Vorbis is a fully open, non-proprietary, patent- and royalty-free,

general-purpose compressed audio format for audio and music at fixed

and variable bitrates from 16 to 128 kbps/channel.

The libvorbis package contains runtime libraries for use in programs

that support Ogg Vorbis.

Update Information:

CVE-2009-3379

Topics%20covered

Topics Covered

security advisory security issue Fedora critical fix libvorbis audio codec CVE issue

Change Log

* Mon Nov 9 2009 Jindrich Novy 1.2.0-9 - backport patches to fix CVE-2009-3379 (#531765) from upstream * Fri Aug 7 2009 Jindrich Novy 1.2.0-8 - fix CVE-2009-2663 (#516259)

References


[ 1 ] Bug #531765 - CVE-2009-3379 libvorbis: security fixes mentioned in MFSA 2009-63 https://bugzilla.redhat.com/show_bug.cgi?id=531765

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libvorbis' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libvorbis
Product: Fedora 11
Version: 1.2.0
Release: 9.fc11
URL: https://www.xiph.org/
Summary: The Vorbis General Audio Compression Codec.

Topics%20covered

Topics Covered

security advisory security issue Fedora critical fix libvorbis audio codec CVE issue

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here