Xiph.Org

Libvorbis

13 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2020-20412

Exploit
  • EPSS 0.43%
  • Veröffentlicht 26.12.2020 04:15:12
  • Zuletzt bearbeitet 21.11.2024 05:12:03

lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking via a crafted OGG file. NOTE: this may overlap CVE-2018-5146.

8.8

CVE-2018-10392

Exploit
  • EPSS 1.36%
  • Veröffentlicht 26.04.2018 05:29:00
  • Zuletzt bearbeitet 21.11.2024 03:41:19

mapping0_forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a denial of service (heap-based buffer overflow or over-read) or possibly have unspecified other impact via a ...

7.5

CVE-2018-10393

  • EPSS 0.35%
  • Veröffentlicht 26.04.2018 05:29:00
  • Zuletzt bearbeitet 21.11.2024 03:41:19

bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.

8.8

CVE-2017-14160

  • EPSS 1.54%
  • Veröffentlicht 21.09.2017 14:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The bark_noise_hybridmp function in psy.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact via a crafted mp4 file.

9.8

CVE-2017-14632

  • EPSS 6.51%
  • Veröffentlicht 21.09.2017 07:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Xiph.Org libvorbis 1.3.5 allows Remote Code Execution upon freeing uninitialized memory in the function vorbis_analysis_headerout() in info.c when vi->channels<=0, a similar issue to Mozilla bug 550184.

6.5

CVE-2017-14633

  • EPSS 1%
  • Veröffentlicht 21.09.2017 07:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability exists in the function mapping0_forward() in mapping0.c, which may lead to DoS when operating on a crafted audio file with vorbis_analysis().

5.5

CVE-2017-11333

  • EPSS 1.19%
  • Veröffentlicht 31.07.2017 13:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The vorbis_analysis_wrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (OOM) via a crafted wav file.

4.3

CVE-2008-1419

Exploit
  • EPSS 13.14%
  • Veröffentlicht 16.05.2008 12:54:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Xiph.org libvorbis 1.2.0 and earlier does not properly handle a zero value for codebook.dim, which allows remote attackers to cause a denial of service (crash or infinite loop) or trigger an integer overflow.

6.8

CVE-2008-1420

  • EPSS 7.13%
  • Veröffentlicht 16.05.2008 12:54:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Integer overflow in residue partition value (aka partvals) evaluation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to execute arbitrary code via a crafted OGG file, which triggers a heap overflow.

9.3

CVE-2008-1423

  • EPSS 8.6%
  • Veröffentlicht 16.05.2008 12:54:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Integer overflow in a certain quantvals and quantlist calculation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file with a large virtual space for its...