Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2009-3379

Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3.5.x before 3.5.4, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors. NOTE: this might overlap CVE-2009-2663.

Related bugs and status

CVE-2009-3379 (Candidate) is related to these bugs:

Bug #581236: Sync libvorbis 1.3.1-1 (main) from Debian unstable (main)

Summary				In	Importance	Status
	581236	Sync libvorbis 1.3.1-1 (main) from Debian unstable (main)		libvorbis (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.mozilla.org...
CONFIRM: https://bugzilla.mozil...
CONFIRM: https://bugzilla.mozil...
CONFIRM: https://bugzilla.mozil...
CONFIRM: https://bugzilla.mozil...
CONFIRM: https://bugzilla.mozil...
FEDORA: FEDORA-2009-11169
FEDORA: FEDORA-2009-11243
REDHAT: RHSA-2009:1561
SECUNIA: 37306
SECUNIA: 37340
MANDRIVA: MDVSA-2009:294
SUNALERT: 272909
VUPEN: ADV-2009-3334
UBUNTU: USN-861-1
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...