SuSE 10 Security Update : libvorbis (ZYPP Patch Number 7057)

This script is Copyright (C) 2010-2012 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 10 host is missing a security-related patch.

Description :

This update of libvorbis fixes a memory corruption while parsing OGG
files. The bug is exploitable by remote attackers to cause an
application crash and could probably be exploited to execute arbitrary
code. The issue has been tracked as CVE-2009-2663.

See also :

http://support.novell.com/security/cve/CVE-2009-2663.html

Solution :

Apply ZYPP patch number 7057.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)

Family: SuSE Local Security Checks

Nessus Plugin ID: 49886 ()

Bugtraq ID:

CVE ID: CVE-2009-2663

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now