Oval Definition:
oval:org.mitre.oval:def:7912
Revision Date
:
2014-06-23
Version
:
19
Title
:
DSA-1585 speex -- integer overflow
Description
:
It was discovered that speex, the Speex codec command line tools, did not correctly deal with negative offsets in a particular header field. This could allow a malicious file to execute arbitrary code.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2008-1686
DSA-1585
Platform(s)
:
Debian GNU/Linux 4.0
Product(s)
:
speex
Definition Synopsis
Debian GNU/Linux 4.0 is installed.
AND
Architecture section
Architecture independent section
Installed architecture is all
AND
speex-doc is earlier than 1.1.12-3etch1
OR
Architecture dependent section
Supported architectures section
Installed architecture is amd64
OR
Installed architecture is sparc
OR
Installed architecture is i386
OR
Installed architecture is alpha
OR
Installed architecture is mips
OR
Installed architecture is mipsel
OR
Installed architecture is arm
AND
Packages section
speex is earlier than 1.1.12-3etch1
OR
libspeex-dev is earlier than 1.1.12-3etch1
OR
libspeex1 is earlier than 1.1.12-3etch1
BACK