openSUSE Security Update : libvorbis (openSUSE-2018-591)
Medium Nessus Plugin ID 110471
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for libvorbis fixes the following issues: The following security issue was fixed :
- Fixed the validation of channels in mapping0_forward(), which previously allowed remote attackers to cause a denial of service via specially crafted files (CVE-2018-10392, bsc#1091070)
This update was imported from the SUSE:SLE-12:Update update project.
SolutionUpdate the affected libvorbis packages.