English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.69349
Category:Ubuntu Local Security Checks
Title:Ubuntu USN-1087-1 (libvpx)
Summary:NOSUMMARY
Description:Description:
The remote host is missing an update to libvpx
announced via advisory USN-1087-1.

Details follow:

Chris Evans discovered that libvpx did not properly perform bounds
checking. If an application using libvpx opened a specially crafted WebM
file, an attacker could cause a denial of service.

Solution:
The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 10.10:
libvpx0 0.9.5-2~
build0.10.10.1

This update uses a new upstream release, which includes additional bug
fixes. In general, a standard system update will make all the necessary
changes.

http://www.securityspace.com/smysecure/catid.html?in=USN-1087-1

Risk factor : Critical

CVSS Score:
10.0

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2010-4489
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11919
http://secunia.com/advisories/42472
http://secunia.com/advisories/43728
http://www.ubuntu.com/usn/USN-1087-1
http://www.vupen.com/english/advisories/2011/0662
Common Vulnerability Exposure (CVE) ID: CVE-2008-7265
Debian Security Information: DSA-2191 (Google Search)
http://www.debian.org/security/2011/dsa-2191
Common Vulnerability Exposure (CVE) ID: CVE-2010-3867
42047
http://secunia.com/advisories/42047
42052
http://secunia.com/advisories/42052
42217
http://secunia.com/advisories/42217
44562
http://www.securityfocus.com/bid/44562
ADV-2010-2853
http://www.vupen.com/english/advisories/2010/2853
ADV-2010-2941
http://www.vupen.com/english/advisories/2010/2941
ADV-2010-2959
http://www.vupen.com/english/advisories/2010/2959
ADV-2010-2962
http://www.vupen.com/english/advisories/2010/2962
DSA-2191
FEDORA-2010-17091
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050687.html
FEDORA-2010-17098
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050703.html
FEDORA-2010-17220
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050726.html
MDVSA-2010:227
http://www.mandriva.com/security/advisories?name=MDVSA-2010:227
SSA:2010-305-03
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.498209
[oss-security] 20101101 Re: Proftpd pre-authentication buffer overflow in Telnet code
http://www.openwall.com/lists/oss-security/2010/11/01/4
http://bugs.proftpd.org/show_bug.cgi?id=3519
http://www.proftpd.org/docs/NEWS-1.3.3c
Common Vulnerability Exposure (CVE) ID: CVE-2010-4652
44933
http://www.securityfocus.com/bid/44933
ADV-2011-0248
http://www.vupen.com/english/advisories/2011/0248
ADV-2011-0331
http://www.vupen.com/english/advisories/2011/0331
FEDORA-2011-0610
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053540.html
FEDORA-2011-0613
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053537.html
MDVSA-2011:023
http://www.mandriva.com/security/advisories?name=MDVSA-2011:023
http://bugs.proftpd.org/show_bug.cgi?id=3536
http://phrack.org/issues.html?issue=67&id=7#article
http://proftpd.org/docs/RELEASE_NOTES-1.3.3d
https://bugzilla.redhat.com/show_bug.cgi?id=670170
Common Vulnerability Exposure (CVE) ID: CVE-2010-4562
http://seclists.org/fulldisclosure/2011/Apr/254
http://seclists.org/dailydave/2011/q2/25
Common Vulnerability Exposure (CVE) ID: CVE-2011-0889
BugTraq ID: 46862
http://www.securityfocus.com/bid/46862
HPdes Security Advisory: HPSBMA02644
http://seclists.org/bugtraq/2011/Mar/132
HPdes Security Advisory: SSRT100284
http://osvdb.org/71179
http://securitytracker.com/id?1025205
http://secunia.com/advisories/43766
http://www.vupen.com/english/advisories/2011/0651
XForce ISS Database: hpca-unspec-code-exec(66082)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66082
Common Vulnerability Exposure (CVE) ID: CVE-2010-2482
40422
http://secunia.com/advisories/40422
50726
http://secunia.com/advisories/50726
DSA-2552
http://www.debian.org/security/2012/dsa-2552
GLSA-201209-02
http://security.gentoo.org/glsa/glsa-201209-02.xml
[oss-security] 20100624 Re: CVE requests: LibTIFF
http://marc.info/?l=oss-security&m=127736307002102&w=2
http://marc.info/?l=oss-security&m=127738540902757&w=2
[oss-security] 20100630 Re: CVE requests: LibTIFF
http://www.openwall.com/lists/oss-security/2010/06/30/22
[oss-security] 20100701 Re: CVE requests: LibTIFF
http://marc.info/?l=oss-security&m=127797353202873&w=2
http://bugzilla.maptools.org/show_bug.cgi?id=1996
https://bugs.launchpad.net/bugs/597246
https://bugzilla.redhat.com/show_bug.cgi?id=603024
https://bugzilla.redhat.com/show_bug.cgi?id=608010
Common Vulnerability Exposure (CVE) ID: CVE-2010-2595
Debian Security Information: DSA-2552 (Google Search)
http://marc.info/?l=oss-security&m=127731610612908&w=2
http://www.redhat.com/support/errata/RHSA-2010-0519.html
http://secunia.com/advisories/40527
http://www.vupen.com/english/advisories/2010/1761
Common Vulnerability Exposure (CVE) ID: CVE-2010-2597
Common Vulnerability Exposure (CVE) ID: CVE-2010-2598
http://www.redhat.com/support/errata/RHSA-2010-0520.html
http://secunia.com/advisories/40536
Common Vulnerability Exposure (CVE) ID: CVE-2010-2630
Common Vulnerability Exposure (CVE) ID: CVE-2010-3087
SUSE-SR:2010:017
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
http://blackberry.com/btsc/KB27244
http://support.novell.com/security/cve/CVE-2010-3087.html
https://bugzilla.novell.com/show_bug.cgi?id=624215
Common Vulnerability Exposure (CVE) ID: CVE-2011-0191
http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html
http://lists.apple.com/archives/security-announce/2011//Mar/msg00003.html
http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html
http://lists.apple.com/archives/security-announce/2011//Mar/msg00005.html
http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html
BugTraq ID: 46657
http://www.securityfocus.com/bid/46657
Debian Security Information: DSA-2210 (Google Search)
http://www.debian.org/security/2011/dsa-2210
http://www.mandriva.com/security/advisories?name=MDVSA-2011:064
http://secunia.com/advisories/43934
SuSE Security Announcement: SUSE-SR:2011:005 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
SuSE Security Announcement: SUSE-SR:2011:009 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html
http://www.vupen.com/english/advisories/2011/0845
http://www.vupen.com/english/advisories/2011/0859
CopyrightCopyright (c) 2011 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.