Lucene search

K
archlinuxArch LinuxASA-201510-22
HistoryOct 27, 2015 - 12:00 a.m.

vorbis-tools: denial of service

2015-10-2700:00:00
Arch Linux
lists.archlinux.org
16

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.024 Low

EPSS

Percentile

90.0%

Buffer overflow in the aiff_open function in oggenc/audio.c allows local
attackers to cause a denial of service (crash) via a crafted AIFF file.

OSVersionArchitecturePackageVersionFilename
anyanyanyvorbis-tools< 1.4.0-6UNKNOWN

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.024 Low

EPSS

Percentile

90.0%