oval:org.mitre.oval:def:8013

Definition Id: oval:org.mitre.oval:def:8013

Oval ID:	oval:org.mitre.oval:def:8013
Title:	DSA-1591 libvorbis -- several vulnerabilities
Description:	Several local (remote) vulnerabilities have been discovered in libvorbis, a library for the Vorbis general-purpose compressed audio codec. The Common Vulnerabilities and Exposures project identifies the following problems: libvorbis does not properly handle a zero value which allows remote attackers to cause a denial of service (crash or infinite loop) or trigger an integer overflow. Integer overflow in libvorbis allows remote attackers to execute arbitrary code via a crafted OGG file, which triggers a heap overflow. Integer overflow in libvorbis allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file which triggers a heap overflow.
Family:	unix	Class:	patch
Reference(s):	DSA-1591 CVE-2008-1419 CVE-2008-1420 CVE-2008-1423	Version:	3
Platform(s):	Debian GNU/Linux 4.0	Product(s):	libvorbis
Definition Synopsis:
Debian GNU/Linux 4.0 is installed. Packages section libvorbis0a is earlier than 1.1.2.dfsg-1.4 AND libvorbisfile3 is earlier than 1.1.2.dfsg-1.4 AND libvorbisenc2 is earlier than 1.1.2.dfsg-1.4 AND libvorbis-dev is earlier than 1.1.2.dfsg-1.4

Definition Id: oval:org.mitre.oval:def:6461

Oval ID:	oval:org.mitre.oval:def:6461
Title:	Debian GNU/Linux 4.0 is installed.
Description:	Debian GNU/Linux 4.0 (etch) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:4.0	Version:	9
Platform(s):	Debian GNU/Linux 4.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:8013