Lucene search
MitreCVELIST:CVE-2015-6749HistorySep 21, 2015 - 7:00 p.m.
CVE-2015-6749
2015-09-2119:00:00
mitre
www.cve.org
Buffer overflow in the aiff_open function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service (crash) via a crafted AIFF file.
References
lists.fedoraproject.org/pipermail/package-announce/2015-September/165555.html
lists.fedoraproject.org/pipermail/package-announce/2015-September/166424.html
lists.opensuse.org/opensuse-updates/2015-10/msg00013.html
seclists.org/oss-sec/2015/q3/455
seclists.org/oss-sec/2015/q3/457
bugs.debian.org/cgi-bin/bugreport.cgi?bug=797461
bugzilla.redhat.com/show_bug.cgi?id=1258424
bugzilla.redhat.com/show_bug.cgi?id=1258443
trac.xiph.org/attachment/ticket/2212/0001-oggenc-Fix-large-alloca-on-bad-AIFF-input.patch
trac.xiph.org/ticket/2212
Related
mageia
mageia
Updated vorbis-tools packages fix CVE-2015-6749
2015-09-08 20:55:59
cbl_mariner
cbl_mariner
CVE-2015-6749 affecting package vorbis-tools for versions less than 1.4.0-35
2023-02-14 22:19:20
CVE-2015-6749 affecting package vorbis-tools for versions less than 1.4.0-35
2023-02-14 22:19:20
fedora
fedora
[SECURITY] Fedora 22 Update: vorbis-tools-1.4.0-20.fc22
2015-09-16 21:24:46
[SECURITY] Fedora 23 Update: vorbis-tools-1.4.0-22.fc23
2015-09-04 19:51:57
nessus
nessus
Fedora 22 : vorbis-tools-1.4.0-20.fc22 (2015-14663)
2015-09-17 00:00:00
Fedora 23 : vorbis-tools-1.4.0-22.fc23 (2015-14664)
2015-09-08 00:00:00
openSUSE Security Update : vorbis-tools (openSUSE-2015-633)
2015-10-06 00:00:00
archlinux
archlinux
vorbis-tools: denial of service
2015-10-27 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0353)
2015-10-15 00:00:00
Fedora Update for vorbis-tools FEDORA-2015-14663
2015-09-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:1765-1)
2021-04-19 00:00:00
ubuntucve
ubuntucve
CVE-2015-6749
2015-09-21 00:00:00
nvd
nvd
CVE-2015-6749
2015-09-21 19:59:02
prion
prion
Buffer overflow
2015-09-21 19:59:00
debiancve
debiancve
CVE-2015-6749
2015-09-21 19:59:02
cve
cve
CVE-2015-6749
2015-09-21 19:59:02
freebsd
freebsd
vorbis-tools, opus-tools -- multiple vulnerabilities
2015-08-08 00:00:00
osv
osv
vorbis-tools - security update
2015-09-29 00:00:00
vorbis-tools - security update
2017-07-03 00:00:00
debian
debian
[SECURITY] [DLA 1010-1] vorbis-tools security update
2017-07-03 09:34:50
[SECURITY] [DLA 317-1] vorbis-tools security update
2015-09-29 09:09:26
rosalinux
rosalinux
Advisory ROSA-SA-2021-1994
2021-07-02 18:19:13