PT-2017-12212 · Mageia+1 · Libvorbis

Published

2017-07-31

·

Updated

2019-01-31

·

CVE-2017-11735

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
The vorbis library version 1.3.6 fix security vulnerabilities:
  • CVE-2017-11735 libvorbis: NULL pointer dereference in vorbis block clear function in lib/block.c
  • CVE-2017-11333 libvorbis: Memory exhaustion in vorbis analysis wrote function in lib/block.c

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2017-11735
MGASA-2019-0059

Affected Products

Libvorbis