Ubuntu Update For Libvorbis Vulnerabilities USN-682-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-682-1

Solution

Please Install the Updated Packages.

Insight

It was discovered that libvorbis did not correctly handle certain malformed sound files. If a user were tricked into opening a specially crafted sound file with an application that uses libvorbis, an attacker could execute arbitrary code with the user's privileges.

Affected

libvorbis vulnerabilities on Ubuntu 6.06 LTS , Ubuntu 7.10 , Ubuntu 8.04 LTS

Severity

Classification

CVE CVE-2008-1419, CVE-2008-1420, CVE-2008-1423
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for bash USN-2363-1
Ubuntu Update for dhcp3 USN-1108-2
Ubuntu Update for bind9 USN-1462-1
Ubuntu Update for Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities USN-896-1
Ubuntu Update for erlang vulnerability USN-624-2

Ubuntu Update for libvorbis vulnerabilities USN-682-1

Take action and discover your vulnerabilities