Debian Security Advisory DSA 2855-1 (libav - Several Vulnerabilities) Network Vulnerability

Summary

Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. The IDs mentioned above are just a portion of the security issues fixed in this update. A full list of the changes is available at http://git.libav.org/?p=libav.git a=blob f=Changelog hb=refs/tags/v0.8.10

Solution

For the stable distribution (wheezy), these problems have been fixed in version 6:0.8.10-1 For the unstable distribution (sid), these problems have been fixed in version 6:9.11-1. We recommend that you upgrade your libav packages.

Affected

libav on Debian Linux

Detection

This check tests the installed software version using the apt package manager.

References

http://www.debian.org/security/2014/dsa-2855.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-3944, CVE-2013-0845, CVE-2013-0846, CVE-2013-0849, CVE-2013-0865, CVE-2013-7010, CVE-2013-7014, CVE-2013-7015

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 085-1 (nvi, nvi-m17n)
Debian Security Advisory DSA 1038-1 (xzgv)
Debian Security Advisory DSA 054-1 (cron)
Debian Security Advisory DSA 016-1 (wu-ftpd)
Debian Security Advisory DSA 091-1 (ssh)

Debian Security Advisory DSA 2855-1 (libav - several vulnerabilities)

Take action and discover your vulnerabilities