CVE-2011-3960

Опубликовано: 09 фев. 2012

Источник: redhat

CVSS2: 4.3

EPSS Низкий

Описание

Google Chrome before 17.0.963.46 does not properly decode audio data, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

Отчет

Not vulnerable. This issue did not affect the versions of libvorbis as shipped with Red Hat Enterprise Linux 4, 5, and 6.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 4	libvorbis	Not affected
Red Hat Enterprise Linux 5	libvorbis	Not affected
Red Hat Enterprise Linux 6	libvorbis	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-121

https://bugzilla.redhat.com/show_bug.cgi?id=788858libvorbis: Stack-buffer overflow in render_line

EPSS

Процентиль: 81%

0.01525

Низкий

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2011-3960

ubuntu

почти 14 лет назад

Google Chrome before 17.0.963.46 does not properly decode audio data, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

CVE-2011-3960

nvd

почти 14 лет назад

Google Chrome before 17.0.963.46 does not properly decode audio data, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

CVE-2011-3960

debian

почти 14 лет назад

Google Chrome before 17.0.963.46 does not properly decode audio data, ...

GHSA-ggxj-x4rp-877f

github

больше 3 лет назад

Google Chrome before 17.0.963.46 does not properly decode audio data, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.

EPSS

Процентиль: 81%

0.01525

Низкий

4.3 Medium

CVSS2