Headline
Ubuntu Security Notice USN-5420-1
Ubuntu Security Notice 5420-1 - It was discovered that Vorbis incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service, or possibly execute arbitrary code.
==========================================================================Ubuntu Security Notice USN-5420-1May 12, 2022libvorbis vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 16.04 ESMSummary:Several security issues were fixed in Vorbis.Software Description:- libvorbis: The Vorbis General Audio Compression CodecDetails:It was discovered that Vorbis incorrectly handled certain files.An attacker could possibly use this issue to cause a denial of service,or possibly execute arbitrary code.(CVE-2017-14160, CVE-2018-10392, CVE-2018-10393)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 16.04 ESM: libvorbis0a 1.3.5-3ubuntu0.2+esm1 libvorbisenc2 1.3.5-3ubuntu0.2+esm1 libvorbisfile3 1.3.5-3ubuntu0.2+esm1In general, a standard system update will make all the necessary changes.References: https://ubuntu.com/security/notices/USN-5420-1 CVE-2017-14160, CVE-2018-10392, CVE-2018-10393