This script is Copyright (C) 2009-2015 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing one or more security
David Thiel discovered that libvorbis did not correctly verify the
size of certain headers, and did not correctly clean up a broken
stream. If a user were tricked into processing a specially crafted
Vorbis stream, a remote attacker could possibly cause a denial of
service or execute arbitrary code with the user's privileges.
Due to a packaging problem, the libvorbis development package was not
able to be upgraded on Mandriva Linux 2007.1 This has been corrected
with this new update.
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.9
Public Exploit Available : false