Search CVE reports
1 – 7 of 7 results
Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files.
1 affected package
vorbis-tools
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vorbis-tools | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (memory allocation error) via a crafted wav file.
1 affected package
vorbis-tools
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vorbis-tools | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
Buffer overflow in the aiff_open function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service (crash) via a crafted AIFF file.
1 affected package
vorbis-tools
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vorbis-tools | — | — | — | Not affected |
oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted raw file.
1 affected package
vorbis-tools
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vorbis-tools | — | — | — | Not affected |
Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (crash) via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access.
1 affected package
vorbis-tools
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vorbis-tools | — | — | — | Not affected |
oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a WAV file with the number of channels set to zero.
1 affected package
vorbis-tools
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vorbis-tools | — | — | — | Not affected |
Some fixes available 32 of 47
Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows...
8 affected packages
gst-plugins-good0.10, libfishsound, speex, sweep, vlc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — |
| libfishsound | — | — | — | — |
| speex | — | — | — | — |
| sweep | — | — | — | — |
| vlc | — | — | — | — |
| vorbis-tools | — | — | — | — |
| xine-lib | — | — | — | — |
| xmms-speex | — | — | — | — |