Fedora 7 Update: libvorbis-1.1.2-3.fc7 - The Community's Center for Security


The central voice for Linux and Open Source security news

Welcome!

Sign up!

EnGarde Community

Polls

What is the most important Linux security technology?

	SELinux
	grsecurity
	CIS Benchmark
	Bastille Linux
	iptables
	LIDS

Advisories

Community

Linux Events

Linux User Groups

Link to Us

Security Center

Book Reviews

Security Dictionary

Security Tips

SELinux

White Papers

Featured Blogs

All About Linux

DanWalsh LiveJournal

Securitydistro

Latest Newsletters

Linux Security Week: June 29th, 2009

Linux Advisory Watch: June 26th, 2009

LinuxSecurity Newsletters

RSS Feeds

Get the LinuxSecurity news you want faster with RSS

Fedora 7 Update: libvorbis-1.1.2-3.fc7

User Rating:

How can I rate this item?

Posted by Benjamin D. Thomas

Multiple security flaws were found in libvorbis. This updated package fixes them all. Descriptions of the security bugs can be found in the Fedora bug reporting software.

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-1765
2007-08-23 22:38:31.010645
--------------------------------------------------------------------------------

Name        : libvorbis
Product     : Fedora 7
Version     : 1.1.2
Release     : 3.fc7
Summary     : The Vorbis General Audio Compression Codec.
Description :
Ogg Vorbis is a fully open, non-proprietary, patent-and royalty-free,
general-purpose compressed audio format for audio and music at fixed
and variable bitrates from 16 to 128 kbps/channel.

The libvorbis package contains runtime libraries for use in programs
that support Ogg Voribs.

--------------------------------------------------------------------------------
Update Information:

Multiple security flaws were found in libvorbis.  This updated package fixes them all.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug  9 2007 Behdad Esfahbod  - 1:1.1.2-3
- Add 16 patches to fix various CVEs.
- Resolves: #250599
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #250599
        https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=250599
  [ 2 ] Bug #250612
        https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=250612
  [ 3 ] CVE-2007-3106
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3106
  [ 4 ] CVE-2007-4065
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4065
  [ 5 ] CVE-2007-4066
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4066
  [ 6 ] CVE-2007-4029
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4029
--------------------------------------------------------------------------------
Updated packages:

8204a40f1b7ccbd7cf5bcb0dc51b2d905e3d0610 libvorbis-debuginfo-1.1.2-3.fc7.ppc64.rpm
58c4358e726fc83558fd6f9cc9e767b589acfc61 libvorbis-1.1.2-3.fc7.ppc64.rpm
de4364e38b5c9ccc0a6966895a146b76b829d240 libvorbis-devel-1.1.2-3.fc7.ppc64.rpm
6c2963632ead7cd39b5f203a0614e3ab3f13a537 libvorbis-debuginfo-1.1.2-3.fc7.i386.rpm
8a6639feaee1dcdbd9c747095decf032a3b6b3f8 libvorbis-devel-1.1.2-3.fc7.i386.rpm
1b58a7ff5ec4c317516d1e11c544e21ed3eaca84 libvorbis-1.1.2-3.fc7.i386.rpm
324005f6d60e1daef00c70d7924ca96d4f7ef4db libvorbis-debuginfo-1.1.2-3.fc7.x86_64.rpm
48b267dce16ab379a37cb3ff71c7c3209963ddf9 libvorbis-1.1.2-3.fc7.x86_64.rpm
098cc588ea7654e321a5ee3d15f109d35e030615 libvorbis-devel-1.1.2-3.fc7.x86_64.rpm
b94e67b5fbf987ccc76cb44e4b5706c9511175c0 libvorbis-devel-1.1.2-3.fc7.ppc.rpm
aa5a4f6b69440d29a26c6b01943d508a34738d97 libvorbis-debuginfo-1.1.2-3.fc7.ppc.rpm
cba5e2b4b7cbb39166c81172bfd006080e6b57b2 libvorbis-1.1.2-3.fc7.ppc.rpm
eafe9fd285a75964eb1ba44558c9ec7828f77f15 libvorbis-1.1.2-3.fc7.src.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://docs.fedoraproject.org/yum/.
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

< Prev		Next >

Partner:

Latest Features

Review: Googling Security: How Much Does Google Know About You

A Secure Nagios Server

Never Installed a Firewall on Ubuntu? Try Firestarter

Review: Hacking Exposed Linux, Third Edition

Security Features of Firefox 3.0

Review: The Book of Wireless

April 2008 Open Source Tool of the Month: sudo

Weekend Edition

QuickLinks: Comunity , HOWTOs , Blogs , Features , Book Reviews , Networking ,
Security Projects , Latest News , Newsletters , SELinux , Privacy , Home,
Hardening , About Us, Advertise, Legal Notice, RSS, Guardian Digital
Home Security Systems, Surveillance Cameras