Lucene search

DebianDEBIAN:DSA-3506-1:8A1F0

HistoryMar 04, 2016 - 8:44 p.m.

[SECURITY] [DSA 3506-1] libav security update

2016-03-0420:44:32

lists.debian.org

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.3 Medium

AI Score

Confidence

High

0.025 Low

EPSS

Percentile

90.2%

JSON

Debian Security Advisory DSA-3506-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
March 04, 2016 https://www.debian.org/security/faq

Package : libav
CVE ID : CVE-2016-1897 CVE-2016-1898 CVE-2016-2326

Several security issues have been corrected in multiple demuxers and
decoders of the libav multimedia library.

For the oldstable distribution (wheezy), these problems have been fixed
in version 6:0.8.17-2.

For the stable distribution (jessie), libav has been updated to
11.6-1~deb8u1 which brings several further bugfixes as detailed in
the upstream changelog:
https://git.libav.org/?p=libav.git;a=blob;f=Changelog;hb=refs/tags/v11.6

We recommend that you upgrade your libav packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian8powerpclibavutil-dev< 6:11.6-1~deb8u1libavutil-dev_6:11.6-1~deb8u1_powerpc.deb
Debian8i386libswscale-dev< 6:11.6-1~deb8u1libswscale-dev_6:11.6-1~deb8u1_i386.deb
Debian8armhflibavresample2< 6:11.6-1~deb8u1libavresample2_6:11.6-1~deb8u1_armhf.deb
Debian7armellibavformat-dev< 6:0.8.17-2libavformat-dev_6:0.8.17-2_armel.deb
Debian8kfreebsd-i386libavdevice55< 6:11.6-1~deb8u1libavdevice55_6:11.6-1~deb8u1_kfreebsd-i386.deb
Debian7kfreebsd-amd64libavdevice53< 6:0.8.17-2libavdevice53_6:0.8.17-2_kfreebsd-amd64.deb
Debian7s390libav-dbg< 6:0.8.17-2libav-dbg_6:0.8.17-2_s390.deb
Debian7mipslibavfilter2< 6:0.8.17-2libavfilter2_6:0.8.17-2_mips.deb
Debian7i386libswscale2< 6:0.8.17-2libswscale2_6:0.8.17-2_i386.deb
Debian8amd64libav-dbg< 6:11.6-1~deb8u1libav-dbg_6:11.6-1~deb8u1_amd64.deb

OS	Version	Architecture	Package	Version	Filename
Debian	8	powerpc	libavutil-dev	< 6:11.6-1~deb8u1	libavutil-dev_6:11.6-1~deb8u1_powerpc.deb
Debian	8	i386	libswscale-dev	< 6:11.6-1~deb8u1	libswscale-dev_6:11.6-1~deb8u1_i386.deb
Debian	8	armhf	libavresample2	< 6:11.6-1~deb8u1	libavresample2_6:11.6-1~deb8u1_armhf.deb
Debian	7	armel	libavformat-dev	< 6:0.8.17-2	libavformat-dev_6:0.8.17-2_armel.deb
Debian	8	kfreebsd-i386	libavdevice55	< 6:11.6-1~deb8u1	libavdevice55_6:11.6-1~deb8u1_kfreebsd-i386.deb
Debian	7	kfreebsd-amd64	libavdevice53	< 6:0.8.17-2	libavdevice53_6:0.8.17-2_kfreebsd-amd64.deb
Debian	7	s390	libav-dbg	< 6:0.8.17-2	libav-dbg_6:0.8.17-2_s390.deb
Debian	7	mips	libavfilter2	< 6:0.8.17-2	libavfilter2_6:0.8.17-2_mips.deb
Debian	7	i386	libswscale2	< 6:0.8.17-2	libswscale2_6:0.8.17-2_i386.deb
Debian	8	amd64	libav-dbg	< 6:11.6-1~deb8u1	libav-dbg_6:11.6-1~deb8u1_amd64.deb