Xiph.org libvorbis 1.1.0

CPE Details

Xiph.org libvorbis 1.1.0
xiph.org
libvorbis
1.1.0
2019-10-17
13h05 +00:00
2019-10-17
13h05 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:xiph.org:libvorbis:1.1.0:*:*:*:*:*:*:*

Informations

Vendor

xiph.org

Product

libvorbis

Version

1.1.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2008-1419 2008-05-16 04h54 +00:00 Xiph.org libvorbis 1.2.0 and earlier does not properly handle a zero value for codebook.dim, which allows remote attackers to cause a denial of service (crash or infinite loop) or trigger an integer overflow.
4.3
CVE-2008-1420 2008-05-16 04h54 +00:00 Integer overflow in residue partition value (aka partvals) evaluation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to execute arbitrary code via a crafted OGG file, which triggers a heap overflow.
6.8
CVE-2008-1423 2008-05-16 04h54 +00:00 Integer overflow in a certain quantvals and quantlist calculation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file with a large virtual space for its codebook, which triggers a heap overflow.
9.3
CVE-2007-4065 2007-09-21 16h00 +00:00 lib/vorbisfile.c in libvorbisfile in Xiph.Org libvorbis before 1.2.0 allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted OGG file, aka trac Changeset 13217.
4.3
CVE-2007-4066 2007-09-21 16h00 +00:00 Multiple buffer overflows in Xiph.Org libvorbis before 1.2.0 allow context-dependent attackers to cause a denial of service or have other unspecified impact via a crafted OGG file, aka trac Changesets 13162, 13168, 13169, 13170, 13172, 13211, and 13215, as demonstrated by an overflow in oggenc.exe related to the _psy_noiseguards_8 array.
4.3