CVE-2017-11548

Опубликовано: 31 июл. 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service (memory corruption) via a crafted MP3 file.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	ignored	end of standard support, was needed
cosmic	ignored	end of life
devel	needed
disco	ignored	end of life
eoan	ignored	end of life
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needed]
esm-infra/bionic	needed
esm-infra/focal	needed
esm-infra/xenial	needed

Показывать по

Ссылки на источники

EPSS

Процентиль: 84%

0.02266

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-11548

CVSS3: 3.3

redhat

больше 8 лет назад

The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service (memory corruption) via a crafted MP3 file.

CVE-2017-11548

CVSS3: 5.5

nvd

больше 8 лет назад

The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service (memory corruption) via a crafted MP3 file.

CVE-2017-11548

CVSS3: 5.5

msrc

4 месяца назад

The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service

CVE-2017-11548

CVSS3: 5.5

debian

больше 8 лет назад

The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 a ...

GHSA-44ff-mrhx-mf5w

CVSS3: 5.5

github

больше 3 лет назад

The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service (memory corruption) via a crafted MP3 file.

EPSS

Процентиль: 84%

0.02266

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2017-11548

Описание

Пакет libao

Ссылки на источники

Связанные уязвимости