Ubuntu Update For Vorbis-tools Vulnerability USN-611-2 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-611-2

Solution

Please Install the Updated Packages.

Insight

USN-611-1 fixed a vulnerability in Speex. This update provides the corresponding update for ogg123, part of vorbis-tools. Original advisory details: It was discovered that Speex did not properly validate its input when processing Speex file headers. If a user or automated system were tricked into opening a specially crafted Speex file, an attacker could create a denial of service in applications linked against Speex or possibly execute arbitrary code as the user invoking the program.

Affected

vorbis-tools vulnerability on Ubuntu 6.06 LTS , Ubuntu 7.04 , Ubuntu 7.10 , Ubuntu 8.04 LTS

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2008-May/000703.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-1686
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for apturl, Epiphany, gecko-sharp, gnome-python-extras, liferea, rhythmbox, totem, ubufox, yelp update USN-930-2
Ubuntu Update for coreutils USN-2473-1
Ubuntu Update for bsd-mailx USN-2455-1
Ubuntu Update for ecryptfs-utils USN-1196-1
Ubuntu Update for cups-filters USN-2210-1

Ubuntu Update for vorbis-tools vulnerability USN-611-2

Take action and discover your vulnerabilities