Debian Security Advisory 4143-1

Debian Security Advisory 4143-1: Posted Mar 17, 2018; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4143-1 - Richard Zhu and Huzaifa Sidhpurwala discovered that an out-of-bounds memory write when playing Vorbis media files could result in the execution of arbitrary code.; tags | advisory, arbitrary; systems | linux, debian; advisories | CVE-2018-5146, CVE-2018-5147; SHA-256 | ae578097448b181069464aaacea1cd098476dd78446feaa86438e6cee725f8df; Download | Favorite | View

Debian Security Advisory 4143-1

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4143-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
March 17, 2018                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : firefox-esr
CVE ID         : CVE-2018-5146 CVE-2018-5147

Richard Zhu and Huzaifa Sidhpurwala discovered that an out-of-bounds
memory write when playing Vorbis media files could result in the
execution of arbitrary code.

For the oldstable distribution (jessie), these problems have been fixed
in version 52.7.2esr-1~deb8u1.

For the stable distribution (stretch), these problems have been fixed in
version 52.7.2esr-1~deb9u1.

We recommend that you upgrade your firefox-esr packages.

For the detailed security status of firefox-esr please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firefox-esr

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=LNoL
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 232 files
Ubuntu 59 files
Debian 27 files
Valentin Lobstein 11 files
LiquidWorm 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
Yevhenii Butenko 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,318)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,567)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,456)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

Debian Security Advisory 4143-1

Debian Security Advisory 4143-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Debian Security Advisory 4143-1

Share This

Debian Security Advisory 4143-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems