Debian Security Advisory DSA 3027-1 (libav - Security Update) Network Vulnerability

Summary

Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. A full list of the changes is available at http://git.libav.org/?p=libav.git a=blob f=Changelog hb=refs/tags/v0.8.15

Solution

For the stable distribution (wheezy), this problem has been fixed in version 6:0.8.16-1. For the testing distribution (jessie), this problem has been fixed in version 6:11~alpha2-1. For the unstable distribution (sid), this problem has been fixed in version 6:11~alpha2-1. We recommend that you upgrade your libav packages.

Affected

libav on Debian Linux

Detection

This check tests the installed software version using the apt package manager.

References

http://www.debian.org/security/2014/dsa-3027.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-7020

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Debian Security Advisory DSA 1055-1 (mozilla-firefox)
Debian Security Advisory DSA 1139-1 (ruby1.6)
Debian Security Advisory DSA 010-1 (gnupg)
Debian Security Advisory DSA 050-1 (sendfile)
Debian Security Advisory DSA 1081-1 (libextractor)

Debian Security Advisory DSA 3027-1 (libav - security update)

Take action and discover your vulnerabilities