Описание
ELSA-2012-0136: libvorbis security update (IMPORTANT)
[1.2.3-4.1]
- fix CVE-2012-0444 (#787076)
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
libvorbis
1.1.2-3.el5_7.6
libvorbis-devel
1.1.2-3.el5_7.6
Oracle Linux x86_64
libvorbis
1.1.2-3.el5_7.6
libvorbis-devel
1.1.2-3.el5_7.6
Oracle Linux i386
libvorbis
1.1.2-3.el5_7.6
libvorbis-devel
1.1.2-3.el5_7.6
Oracle Linux 6
Oracle Linux x86_64
libvorbis
1.2.3-4.el6_2.1
libvorbis-devel
1.2.3-4.el6_2.1
libvorbis-devel-docs
1.2.3-4.el6_2.1
Oracle Linux i686
libvorbis
1.2.3-4.el6_2.1
libvorbis-devel
1.2.3-4.el6_2.1
libvorbis-devel-docs
1.2.3-4.el6_2.1
Oracle Linux sparc64
libvorbis
1.2.3-4.el6_2.1
libvorbis-devel
1.2.3-4.el6_2.1
libvorbis-devel-docs
1.2.3-4.el6_2.1
Связанные CVE
Связанные уязвимости
Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Ogg Vorbis file.
Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Ogg Vorbis file.
Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Ogg Vorbis file.
Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before ...
Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Ogg Vorbis file.