GLSA-201312-04 : libtheora: Arbitrary code execution
High Nessus Plugin ID 71170
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-201312-04 (libtheora: Arbitrary code execution)
An integer overflow flaw has been discovered in libtheora.
A remote attacker could execute arbitrary code or cause a Denial of Service condition.
There is no known workaround at this time.
SolutionAll libtheora users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/libtheora-1.1.1' Packages which depend on this library may need to be recompiled. Tools such as revdep-rebuild may assist in identifying some of these packages.