[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 791-1] libav security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : libav
Version        : 6:0.8.20-0+deb7u1
CVE ID         : CVE-2016-9819 CVE-2016-9820 CVE-2016-9821 CVE-2016-9822

Multiple integer overflows have been discovered in libav 11.8 and earlier,
allowing remote attackers to cause a crash via a crafted MP3 file.

For Debian 7 "Wheezy", these problems have been fixed in version
6:0.8.20-0+deb7u1.

We recommend that you upgrade your libav packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEErLe2fxl/mzIVM0McrJCsPsUkBl4FAliAulYACgkQrJCsPsUk
Bl6i8BAAmoEAG0xbnOmc8xDbIT6RZ8J6sO5pyl9qqNHIi8vrAkvrgvAh0agIIHCs
FZIIPiqXL41x5eM9++4/Ogu2IIEYPw1AAYkxb2nqLpStCygO4hqpSPOxeeg6TAnD
V3W7srntsachJN/Pt6WbRDoMPpZuEE2W+riiaC2O3RZsYRZNWSJhMBsVSB0UKmJF
xdSMqhgsDPNpJx9/IMLe051Cf+PJdKr+Gn9Qsd9kQ1+EsixuJWrAVmZAhCe9rWCB
4tKsKadXPhX2do4OYDvBs/yV9czupL+WzGVZrTzaNa0Mn6dFBTUnWdDpGAeQDUwx
ZXh61pLycmDkpRxdcJ8c0oNOaqEYtPfYIjjbZvdwMlLnoTNw4YkRa56yJlC9sanz
t/TePPkN0MlHkTTHGrtkItOh+MQk4ziXxozMkxlWQpt/qxujcrUadRsQV6h9bLej
R4hr29jbgqtv2bSv6Ql8e4xxNpYJJQX3+k5g2uKTfuFc/C2hUY37i6v6d5dZ0Wq5
YuERxmFG85+XOdbnqdzvCmr9t712BEalVHeKUn3AscXGzF6m39UfYfmh3xiG2pbz
10jr90OqkXKevmWntMThWp2giTdZbh8cgmMFBbMfJyTMO4ybbC4UGVYlT3ky7FjW
E9lLbrzE1MO8SVJYtn3O9Hrj1LM9pYIoupp+c1Iaor77PadBUBg=
=P14c
-----END PGP SIGNATURE-----


Reply to: