Описание
Xiph.org libvorbis before 1.0 does not properly check for underpopulated Huffman trees, which allows remote attackers to cause a denial of service (crash) via a crafted OGG file that triggers memory corruption during execution of the _make_decode_tree function.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 1.2.3-3 |
| hardy | released | 1.2.0.dfsg-2ubuntu0.3 |
| intrepid | released | 1.2.0.dfsg-3.1ubuntu0.8.10.2 |
| jaunty | released | 1.2.0.dfsg-3.1ubuntu0.9.04.2 |
| karmic | not-affected | 1.2.0.dfsg-6 |
| upstream | released | 1.0 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
Xiph.org libvorbis before 1.0 does not properly check for underpopulated Huffman trees, which allows remote attackers to cause a denial of service (crash) via a crafted OGG file that triggers memory corruption during execution of the _make_decode_tree function.
Xiph.org libvorbis before 1.0 does not properly check for underpopulated Huffman trees, which allows remote attackers to cause a denial of service (crash) via a crafted OGG file that triggers memory corruption during execution of the _make_decode_tree function.
Xiph.org libvorbis before 1.0 does not properly check for underpopulat ...
Xiph.org libvorbis before 1.0 does not properly check for underpopulated Huffman trees, which allows remote attackers to cause a denial of service (crash) via a crafted OGG file that triggers memory corruption during execution of the _make_decode_tree function.
Уязвимости операционной системы Red Hat Enterprise Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
4.3 Medium
CVSS2