Test Kennung:	1.3.6.1.4.1.25623.1.0.72013
Kategorie:	Mandrake Local Security Checks
Titel:	Mandriva Security Advisory MDVSA-2012:023-1 (libvpx)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing an update to libvpx announced via advisory MDVSA-2012:023-1. A vulnerability has been found and corrected in libvpx: VP8 Codec SDK (libvpx) before 1.0.0 Duclair allows remote attackers to cause a denial of service (application crash) via (1) unspecified corrupt input or (2) by starting decoding from a P-frame, which triggers an out-of-bounds read, related to the clamping of motion vectors in SPLITMV blocks (CVE-2012-0823). The updated packages have been patched to correct this issue. Update: This is a symbolic advisory correction because there was a clash with MDVSA-2012:023 that addressed libxml2. Affected: 2010.1, 2011. Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2012:023-1 Risk factor : High
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0823 BugTraq ID: 51775 http://www.securityfocus.com/bid/51775 http://www.mandriva.com/security/advisories?name=MDVSA-2012:023 http://www.openwall.com/lists/oss-security/2012/01/28/4 http://www.openwall.com/lists/oss-security/2012/01/30/2
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.