[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 515-1] libav security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : libav
Version        : 6:0.8.17-2+deb7u2
CVE ID         : CVE-2016-3062

It was discovered that there was a memory corruption issue in
libav (a multimedia player, server, encoder and transcoder) when
parsing .mp4 files which could lead to crash or possibly execute
arbitrary code.

For Debian 7 "Wheezy", this issue has been fixed in libav version
6:0.8.17-2+deb7u2.

We recommend that you upgrade your libav packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBCAAGBQJXX/YEAAoJEB6VPifUMR5YRIgP/2lstnq9XZmElh8G6a7AvEoD
bcCn6bEBPjdDhtVmriNxYqHpTehvoKgxZUMsEi2zgpJswbtwPhnpVPuV6H+1w3iW
voo5l6DhQAyxjg5euccm7d54ryjvxeeRlse2Bw3D02Hyt9DoAJOB+A8alp4/pEOc
xvKXeX7/g0bkzeeWIVzI7vj0ZcRJ52fycXo4KWdntJzL8jOFLqfNJvfXvfckEiaD
9sFAk++lNNVM36Urg44DAfSWj8yO8shT897/ALtSjvzhNBXlfeD3K3iEcgYFO1qa
hmWWk+mChJ0oAkbmzSESLlJdVZNvjl1iq3ELlxG3nbwvWv08h0kLv9kgBWMglqzL
zn+GQSY7vfHJuQag5DmBU7Otxl0Q2LQ78ySCoQ8v5xKrTmNfLV+NEgXNOcWqoXnS
umsZk4kTgzzzGFejiv2Elcng2vYOhTPF31ynCLT1Sad7zK0d1dx039AfxiCQ4HSy
mHy7CVn/B+eW5OSz34A3jyGkNuxgFtuGwI/jkYR8J3WnV+1v5Rn8NcCObFWlT9/L
msHvy+LgNSPETZUoZ1SnOJkHMcVazkYpQxwtSMts8xLdrYk96gs1CyOsEiBCavl9
qoebvWHIC1WfRJpq39wPaGTCyxioVeB71mj7j2ORHLKNkfrWYGZ7rpIaG71XigbV
Mb/gmKFbC0zq4kUlyPRz
=rE3L
-----END PGP SIGNATURE-----


Reply to: