PT-2015-4318 · Xiph.Org+2 · Vorbis-Tools+2

Published

2015-01-23

·

Updated

2024-06-15

·

CVE-2014-9640

CVSS v2.0

5.0

Medium

VectorAV:N/AC:L/Au:N/C:N/I:N/A:P
Name of the Vulnerable Software and Affected Versions vorbis-tools version 1.4.0
Description The issue allows remote attackers to cause a denial of service, specifically an out-of-bounds read, by providing a crafted raw file.
Recommendations For version 1.4.0, update to a newer version that contains a fix for this issue.

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2021-2124
ALT-PU-2023-1433
CVE-2014-9640
DLA-1010-1
DLA-317-1
MGASA-2015-0051
OESA-2021-1028
OPENSUSE-SU-2024:10259-1
SUSE-SU-2015:0367-1
SUSE-SU-2015_0367-1

Affected Products

Alt Linux
Suse
Vorbis-Tools