Debian: 2793-1: libav: Multiple vulnerabilities
Posted by Benjamin D. Thomas   
Debian Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. The CVE IDs mentioned above are just a small portion of the security issues fixed in this update. A full list of the changes is available at [More...]
- -------------------------------------------------------------------------
Debian Security Advisory DSA-2793-1                   security@debian.org
http://www.debian.org/security/                        Moritz Muehlenhoff
November 09, 2013                      http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : libav
Vulnerability  : several
Problem type   : remote
Debian-specific: no
CVE ID         : CVE-2013-0844 CVE-2013-0850 CVE-2013-0853 CVE-2013-0854 
                 CVE-2013-0857 CVE-2013-0858 CVE-2013-0866

Several security issues have been corrected in multiple demuxers and 
decoders of the libav multimedia library. The CVE IDs mentioned above are 
just a small portion of the security issues fixed in this update. A full
list of the changes is available at
http://git.libav.org/?p=libav.git;a=blob;f=Changelog;hb=refs/tags/v0.8.9

For the stable distribution (wheezy), these problems have been fixed in
version 0.8.9-1.

For the unstable distribution (sid), these problems have been fixed in
version 9.10-1.

We recommend that you upgrade your libav packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----