Описание
Integer overflow in a certain quantvals and quantlist calculation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file with a large virtual space for its codebook, which triggers a heap overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.1.2-0ubuntu2.3 |
| devel | not-affected | 1.2.0.dfsg-3.1 |
| feisty | ignored | end of life, was needed |
| gutsy | released | 1.2.0.dfsg-1ubuntu0.1 |
| hardy | released | 1.2.0.dfsg-2ubuntu0.1 |
| intrepid | not-affected | 1.2.0.dfsg-3.1 |
| upstream | needs-triage |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
Integer overflow in a certain quantvals and quantlist calculation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file with a large virtual space for its codebook, which triggers a heap overflow.
Integer overflow in a certain quantvals and quantlist calculation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file with a large virtual space for its codebook, which triggers a heap overflow.
Integer overflow in a certain quantvals and quantlist calculation in X ...
Integer overflow in a certain quantvals and quantlist calculation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file with a large virtual space for its codebook, which triggers a heap overflow.
EPSS
9.3 Critical
CVSS2