xiph Vorbis-tools 1.4.0

CPE Details

xiph Vorbis-tools 1.4.0
xiph
vorbis-tools
1.4.0
2015-01-26
11h59 +00:00
2015-01-26
13h41 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:xiph:vorbis-tools:1.4.0:*:*:*:*:*:*:*

Informations

Vendor

xiph

Product

vorbis-tools

Version

1.4.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2017-11331 2017-07-31 11h00 +00:00 The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (memory allocation error) via a crafted wav file.
5.5
Medium
CVE-2015-6749 2015-09-21 17h00 +00:00 Buffer overflow in the aiff_open function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service (crash) via a crafted AIFF file.
4.3
CVE-2014-9638 2015-01-23 14h00 +00:00 oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a WAV file with the number of channels set to zero.
5
CVE-2014-9639 2015-01-23 14h00 +00:00 Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (crash) via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access.
5
CVE-2014-9640 2015-01-23 14h00 +00:00 oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted raw file.
5