Описание
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libvorbis | fixed | 1.3.6-2 | package | |
| libvorbis | ignored | wheezy | package |
Примечания
https://gitlab.xiph.org/xiph/vorbis/issues/2334
Fixed by: https://gitlab.xiph.org/xiph/vorbis/commit/018ca26dece618457dd13585cad52941193c4a25
Same patch as for CVE-2017-14160
EPSS
Процентиль: 50%
0.00269
Низкий
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 7 лет назад
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
CVSS3: 7.3
redhat
больше 7 лет назад
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
CVSS3: 7.5
nvd
больше 7 лет назад
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
CVSS3: 7.5
msrc
почти 4 года назад
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
CVSS3: 7.5
github
больше 3 лет назад
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
EPSS
Процентиль: 50%
0.00269
Низкий