SuSE 11 / 11.1 Security Update : libvorbis (SAT Patch Numbers 2486 / 2487)

This script is Copyright (C) 2010-2013 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 11 host is missing one or more security updates.

Description :

This update of libvorbis fixes a memory corruption while parsing OGG
files. The bug is exploitable by remote attackers to cause an
application crash and could probably be exploited to execute arbitrary
code. The issue has been tracked as CVE-2009-2663.

See also :

https://bugzilla.novell.com/show_bug.cgi?id=608192
http://support.novell.com/security/cve/CVE-2009-2663.html

Solution :

Apply SAT patch number 2486 / 2487 as appropriate.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)

Family: SuSE Local Security Checks

Nessus Plugin ID: 50946 ()

Bugtraq ID:

CVE ID: CVE-2009-2663

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now