Known Vulnerabilities for Vorbis-tools by Xiph
Listed below are 5 of the newest known vulnerabilities associated with "Vorbis-tools" by "Xiph".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2017-11331 | The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (... | 5.5 - MEDIUM | 2017-07-31 | 2020-05-28 |
| CVE-2015-6749 | Buffer overflow in the aiff_open function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to caus... | 4.3 - MEDIUM | 2015-09-21 | 2016-12-08 |
| CVE-2014-9640 | oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted... | 5 - MEDIUM | 2015-01-23 | 2018-10-30 |
| CVE-2014-9639 | Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (crash) via a crafted n... | 5 - MEDIUM | 2015-01-23 | 2018-10-30 |
| CVE-2014-9638 | oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a WAV ... | 5 - MEDIUM | 2015-01-23 | 2018-10-30 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Xiph | Vorbis-tools | 1.4.0 | All | All | All |