Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-2663HistoryAug 04, 2009 - 4:30 p.m.
CVE-2009-2663
2009-08-0416:30:00
Debian Security Bug Tracker
security-tracker.debian.org
9
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.026 Low
EPSS
Percentile
90.3%
libvorbis before r16182, as used in Mozilla Firefox 3.5.x before 3.5.2 and other products, allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .ogg file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libvorbis | < 1.2.0.dfsg-6 | libvorbis_1.2.0.dfsg-6_all.deb |
| Debian | 11 | all | libvorbis | < 1.2.0.dfsg-6 | libvorbis_1.2.0.dfsg-6_all.deb |
| Debian | 10 | all | libvorbis | < 1.2.0.dfsg-6 | libvorbis_1.2.0.dfsg-6_all.deb |
| Debian | 999 | all | libvorbis | < 1.2.0.dfsg-6 | libvorbis_1.2.0.dfsg-6_all.deb |
| Debian | 13 | all | libvorbis | < 1.2.0.dfsg-6 | libvorbis_1.2.0.dfsg-6_all.deb |
| Debian | 12 | all | libvorbisidec | < 1.0.2+svn16259-2 | libvorbisidec_1.0.2+svn16259-2_all.deb |
| Debian | 11 | all | libvorbisidec | < 1.0.2+svn16259-2 | libvorbisidec_1.0.2+svn16259-2_all.deb |
| Debian | 10 | all | libvorbisidec | < 1.0.2+svn16259-2 | libvorbisidec_1.0.2+svn16259-2_all.deb |
| Debian | 999 | all | libvorbisidec | < 1.0.2+svn16259-2 | libvorbisidec_1.0.2+svn16259-2_all.deb |
| Debian | 13 | all | libvorbisidec | < 1.0.2+svn16259-2 | libvorbisidec_1.0.2+svn16259-2_all.deb |
Related
nessus
nessus
openSUSE Security Update : libvorbis (openSUSE-SU-2010:0351-1)
2010-07-05 00:00:00
CentOS 3 / 5 : libvorbis (CESA-2009:1219)
2009-08-20 00:00:00
SuSE 10 Security Update : libvorbis (ZYPP Patch Number 7057)
2010-10-11 00:00:00
openvas
openvas
RedHat Security Advisory RHSA-2009:1219
2009-09-02 00:00:00
Fedora Core 10 FEDORA-2009-8445 (libvorbis)
2009-08-17 00:00:00
CentOS Update for libvorbis CESA-2009:1219 centos5 i386
2011-08-09 00:00:00
gentoo
gentoo
libvorbis: User-assisted execution of arbitrary code
2009-09-07 00:00:00
ubuntucve
ubuntucve
CVE-2009-2663
2009-08-04 00:00:00
CVE-2009-3379
2009-10-29 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: libvorbis-1.2.0-6.fc10
2009-08-10 21:50:41
[SECURITY] Fedora 11 Update: libvorbis-1.2.0-8.fc11
2009-08-10 21:51:43
[SECURITY] Fedora 10 Update: libvorbis-1.2.0-7.fc10
2009-11-10 17:43:32
centos
centos
libvorbis security update
2009-08-18 19:17:02
cve
cve
CVE-2009-2663
2009-08-04 16:30:00
CVE-2009-3379
2009-10-29 14:30:00
prion
prion
Memory corruption
2009-08-04 16:30:00
Code injection
2009-10-29 14:30:00
oraclelinux
oraclelinux
libvorbis security update
2009-08-18 00:00:00
redhat
redhat
(RHSA-2009:1219) Important: libvorbis security update
2009-08-18 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:35:42
debian
debian
[SECURITY] [DSA 1939-1] New libvorbis packages fix several vulnerabilities
2009-11-24 22:41:13
debiancve
debiancve
CVE-2009-3379
2009-10-29 14:30:00
securityvulns
securityvulns
[USN-825-1] libvorbis vulnerability
2009-08-25 00:00:00
libvorbis multiple security vulnerabilities
2009-08-25 00:00:00
ubuntu
ubuntu
libvorbis vulnerability
2009-08-24 00:00:00
mozilla
mozilla
Crashes with evidence of memory corruption (rv:1.9.1.2/1.9.0.13) — Mozilla
2009-08-03 00:00:00
Upgrade media libraries to fix memory safety bugs — Mozilla
2009-10-27 00:00:00
suse
suse
remote code execution in MozillaFirefox
2009-10-20 17:59:46
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.026 Low
EPSS
Percentile
90.3%
Related for DEBIANCVE:CVE-2009-2663