Test ID:	1.3.6.1.4.1.25623.1.0.842705
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-2944-1)
Summary:	The remote host is missing an update for the 'libav' package(s) announced via the USN-2944-1 advisory.
Description:	Summary: The remote host is missing an update for the 'libav' package(s) announced via the USN-2944-1 advisory. Vulnerability Insight: It was discovered that Libav incorrectly handled certain malformed media files. If a user were tricked into opening a crafted media file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program. Affected Software/OS: 'libav' package(s) on Ubuntu 12.04. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-8541 https://security.gentoo.org/glsa/201603-06 http://www.ubuntu.com/usn/USN-2944-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-1872 BugTraq ID: 72644 http://www.securityfocus.com/bid/72644 https://lists.debian.org/debian-lts-announce/2019/03/msg00041.html http://www.securitytracker.com/id/1033078 Common Vulnerability Exposure (CVE) ID: CVE-2015-3395 BugTraq ID: 74433 http://www.securityfocus.com/bid/74433 Debian Security Information: DSA-3288 (Google Search) http://www.debian.org/security/2015/dsa-3288 https://security.gentoo.org/glsa/201705-08 Common Vulnerability Exposure (CVE) ID: CVE-2015-5479 BugTraq ID: 75932 http://www.securityfocus.com/bid/75932 https://blogs.gentoo.org/ago/2015/07/16/libav-divide-by-zero-in-ff_h263_decode_mba/ SuSE Security Announcement: openSUSE-SU-2016:1685 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-06/msg00105.html Common Vulnerability Exposure (CVE) ID: CVE-2015-6818 https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html http://www.securitytracker.com/id/1033483 Common Vulnerability Exposure (CVE) ID: CVE-2015-6820 Common Vulnerability Exposure (CVE) ID: CVE-2015-6824 https://lists.debian.org/debian-lts-announce/2018/12/msg00010.html Common Vulnerability Exposure (CVE) ID: CVE-2015-6826 Common Vulnerability Exposure (CVE) ID: CVE-2015-8364 SuSE Security Announcement: openSUSE-SU-2015:2370 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-12/msg00118.html Common Vulnerability Exposure (CVE) ID: CVE-2015-8365 Debian Security Information: DSA-4012 (Google Search) http://www.debian.org/security/2017/dsa-4012 Common Vulnerability Exposure (CVE) ID: CVE-2016-1897 BugTraq ID: 80501 http://www.securityfocus.com/bid/80501 CERT/CC vulnerability note: VU#772447 https://www.kb.cert.org/vuls/id/772447 Debian Security Information: DSA-3506 (Google Search) http://www.debian.org/security/2016/dsa-3506 https://security.gentoo.org/glsa/201606-09 http://habrahabr.ru/company/mailru/blog/274855 http://security.stackexchange.com/questions/110644 http://www.openwall.com/lists/oss-security/2016/01/14/1 http://www.securitytracker.com/id/1034932 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.529036 SuSE Security Announcement: openSUSE-SU-2016:0243 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00034.html Common Vulnerability Exposure (CVE) ID: CVE-2016-1898 Common Vulnerability Exposure (CVE) ID: CVE-2016-2326 BugTraq ID: 84165 http://www.securityfocus.com/bid/84165 http://www.securitytracker.com/id/1035010 Common Vulnerability Exposure (CVE) ID: CVE-2016-2330 BugTraq ID: 84217 http://www.securityfocus.com/bid/84217
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.