[SECURITY] [DSA 3189-1] libav security update

2015-03-1519:49:38

lists.debian.org

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

10 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.9%

JSON

Debian Security Advisory DSA-3189-1 [email protected]
http://www.debian.org/security/ Moritz Muehlenhoff
March 15, 2015 http://www.debian.org/security/faq

Package : libav
CVE ID : CVE-2014-7933 CVE-2014-8543 CVE-2014-8544 CVE-2014-8547
CVE-2014-8548 CVE-2014-9604

Several security issues have been corrected in multiple demuxers and
decoders of the libav multimedia library. A full list of the changes is
available at
http://git.libav.org/?p=libav.git;a=blob;f=Changelog;hb=refs/tags/v0.8.17

For the stable distribution (wheezy), these problems have been fixed in
version 6:0.8.17-1.

For the unstable distribution (sid), these problems have been fixed in
version 6:11.3-1.

We recommend that you upgrade your libav packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian7sparclibavfilter2< 6:0.8.17-1libavfilter2_6:0.8.17-1_sparc.deb
Debian7mipslibavcodec53< 6:0.8.17-1libavcodec53_6:0.8.17-1_mips.deb
Debian7powerpclibpostproc-dev< 6:0.8.17-1libpostproc-dev_6:0.8.17-1_powerpc.deb
Debian7armellibavutil-dev< 6:0.8.17-1libavutil-dev_6:0.8.17-1_armel.deb
Debian7mipsellibavdevice-dev< 6:0.8.17-1libavdevice-dev_6:0.8.17-1_mipsel.deb
Debian7armellibavdevice-dev< 6:0.8.17-1libavdevice-dev_6:0.8.17-1_armel.deb
Debian7powerpcffmpeg< 6:0.8.17-1ffmpeg_6:0.8.17-1_powerpc.deb
Debian7s390xlibavfilter2< 6:0.8.17-1libavfilter2_6:0.8.17-1_s390x.deb
Debian7s390libpostproc52< 6:0.8.17-1libpostproc52_6:0.8.17-1_s390.deb
Debian7kfreebsd-i386libswscale2< 6:0.8.17-1libswscale2_6:0.8.17-1_kfreebsd-i386.deb

OS	Version	Architecture	Package	Version	Filename
Debian	7	sparc	libavfilter2	< 6:0.8.17-1	libavfilter2_6:0.8.17-1_sparc.deb
Debian	7	mips	libavcodec53	< 6:0.8.17-1	libavcodec53_6:0.8.17-1_mips.deb
Debian	7	powerpc	libpostproc-dev	< 6:0.8.17-1	libpostproc-dev_6:0.8.17-1_powerpc.deb
Debian	7	armel	libavutil-dev	< 6:0.8.17-1	libavutil-dev_6:0.8.17-1_armel.deb
Debian	7	mipsel	libavdevice-dev	< 6:0.8.17-1	libavdevice-dev_6:0.8.17-1_mipsel.deb
Debian	7	armel	libavdevice-dev	< 6:0.8.17-1	libavdevice-dev_6:0.8.17-1_armel.deb
Debian	7	powerpc	ffmpeg	< 6:0.8.17-1	ffmpeg_6:0.8.17-1_powerpc.deb
Debian	7	s390x	libavfilter2	< 6:0.8.17-1	libavfilter2_6:0.8.17-1_s390x.deb
Debian	7	s390	libpostproc52	< 6:0.8.17-1	libpostproc52_6:0.8.17-1_s390.deb
Debian	7	kfreebsd-i386	libswscale2	< 6:0.8.17-1	libswscale2_6:0.8.17-1_kfreebsd-i386.deb