Mehrere Probleme in libvpx (Aktualisierung)
ID: | USN-4199-2 |
Distribution: | Ubuntu |
Plattformen: | Ubuntu 14.04 ESM |
Datum: | Mi, 15. Juli 2020, 23:55 |
Referenzen: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13194
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9232 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9433 |
Applikationen: | libvpx |
Update von: | Mehrere Probleme in libvpx |
Originalnachricht |
|
--===============7861788126796013493== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="pWyiEgJYm5f9v55/" Content-Disposition: inline --pWyiEgJYm5f9v55/ Content-Type: text/plain; charset=us-ascii Content-Disposition: inline ========================================================================== Ubuntu Security Notice USN-4199-2 July 15, 2020 libvpx vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 ESM Summary: Several security issues were fixed in libvpx. Software Description: - libvpx: VP8 and VP9 video codec Details: USN-4199-1 fixed several vulnerabilities in libvpx. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: It was discovered that libvpx did not properly handle certain malformed WebM media files. If an application using libvpx opened a specially crafted WebM file, a remote attacker could cause a denial of service, or possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM: libvpx1 1.3.0-2ubuntu0.1~esm1 In general, a standard system update will make all the necessary changes. References: https://usn.ubuntu.com/4199-2 https://usn.ubuntu.com/4199-1 CVE-2017-13194, CVE-2019-9232, CVE-2019-9433 --pWyiEgJYm5f9v55/ Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCgAdFiEEf+ebRFcoyOoAQoOeRbznW4QLH2kFAl8POU0ACgkQRbznW4QL H2lQgBAAmNIXlJ9JuKMOU4omrpLv9AVUHseQicEUKXxFOzhnlafw1yrnwoL1jCub fCM0ZhOjTb4zXhAfF4n0jhoQ1hEyId5tBQJWZPMAbdI0roohW/tqFq4YwgG3APeu GNXmjUc9FJ4tZyw4Xj6jcruA2UFqip1LsAgqtdsIKezEEC669lD6cyQZUbwr7kQz qE/kfAer/UdBKn+IVli3g4KbhHrAojsv/onb9zftl5hsIwOl4+Z9FUKe5dzaTPwO 7ctU7nJh21MAgSM0MguhgIZ0Kz+UxQa6z2FBqwoDB2wT5ruu1upkOqB9hMGZjCbI xG9UzauKz5ZT8+ujvZ2aa+K8DQkb0/gJkCSboDILxG11r0yQPjy7kranIg0ZCPQP vyMJT6XQSh8HYaTlA7i1AxuNbxF/+wHg1u7z0xiU5gOgD3PlL/0POzFN/Iz+Pn8f n/MZ+0A3MTu73LQ0JH6Q/Qk7JQueyu9FnX4DLA/20yHHqT7hq6VU3wae+PFsCzUA JUuwAb9grA7OOKe4Nn47rgEkI3indd+ySVKC1X4YLa2Jtv3XcSMtEd9cYXO86rqT FuDUCfhEl/nt0b6qEbE8wev9kHuLay8hoLcijLbUDj2pEz9a8zh/Gd3cWrzYtpKO m0fDamcCIVe1ieVr9XNMmo652KTTEt3A0pNOt8T4B2o7/TOrT+I= =BHFL -----END PGP SIGNATURE----- --pWyiEgJYm5f9v55/-- --===============7861788126796013493== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce |