Описание
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libvorbis | fixed | 1.3.6-2 | package | |
| libvorbis | ignored | wheezy | package |
Примечания
https://gitlab.xiph.org/xiph/vorbis/issues/2334
Fixed by: https://gitlab.xiph.org/xiph/vorbis/commit/018ca26dece618457dd13585cad52941193c4a25
Same patch as for CVE-2017-14160
Связанные уязвимости
CVSS3: 7.5
ubuntu
почти 8 лет назад
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
CVSS3: 7.3
redhat
почти 8 лет назад
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
CVSS3: 7.5
nvd
почти 8 лет назад
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
CVSS3: 7.5
msrc
около 4 лет назад
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
CVSS3: 7.5
github
больше 3 лет назад
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.