CVE-2023-43361

Опубликовано: 02 окт. 2023

Источник: debian

EPSS Низкий

Описание

Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
vorbis-tools	fixed	1.4.3-1		package

Примечания

Crash in CLI tool, no security impact
https://github.com/xiph/vorbis-tools/issues/41
https://gitlab.xiph.org/xiph/vorbis-tools/-/merge_requests/7

EPSS

Процентиль: 6%

0.00029

Низкий

Связанные уязвимости

CVE-2023-43361

CVSS3: 7.8

ubuntu

больше 1 года назад

Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files.

CVE-2023-43361

CVSS3: 7.3

redhat

больше 1 года назад

Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files.

CVE-2023-43361

CVSS3: 7.8

nvd

больше 1 года назад

Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files.

SUSE-SU-2023:4251-1

suse-cvrf

больше 1 года назад

Security update for vorbis-tools

SUSE-SU-2023:4218-1

suse-cvrf

больше 1 года назад

Security update for vorbis-tools

EPSS

Процентиль: 6%

0.00029

Низкий