Known Vulnerabilities for Vorbis-tools by Xiph
Listed below are 6 of the newest known vulnerabilities associated with "Vorbis-tools" by "Xiph".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-43361 json | Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of... | 7.8 - HIGH | 2023-10-02 | 2024-01-27 |
| CVE-2017-11331 json | The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (... | 5.5 - MEDIUM | 2017-07-31 | 2020-05-28 |
| CVE-2015-6749 json | Buffer overflow in the aiff_open function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to caus... | 4.3 - MEDIUM | 2015-09-21 | 2016-12-08 |
| CVE-2014-9640 json | oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted... | 5 - MEDIUM | 2015-01-23 | 2018-10-30 |
| CVE-2014-9639 json | Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (crash) via a crafted n... | 5 - MEDIUM | 2015-01-23 | 2018-10-30 |
| CVE-2014-9638 json | oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a WAV ... | 5 - MEDIUM | 2015-01-23 | 2018-10-30 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Xiph | Vorbis-tools | 1.4.0 |