libvorbis 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1250682998
업데이트 : 2009.08.19
상세내용
- libvorbis 1.2.0-3.fc11 update
. CVE-2009-2663
An insufficient input validation flaw was found in the way libvorbis
processes the codec file headers (static mode headers and encoding books)
of the Ogg Vorbis audio file format (Ogg). A remote attacker could provide
a specially-crafted Ogg file that would cause a denial of service (memory
corruption and application crash) or, potentially, execute arbitrary code
with the privileges of an application using the libvorbis library when
opened by a victim.
Autoupdates 지원 : 지원
pkgsysupdate
update 패키지
RPMS :
. libvorbis-1.2.0-3.fc11.i686.rpm
. libvorbis-devel-1.2.0-3.fc11.i686.rpm
SRPMS :
. libvorbis-1.2.0-3.fc11.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2663
|