CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
88.9%
Integer overflow in the padding implementation in the opus_packet_parse_impl function in src/opus_decoder.c in Opus before 1.0.2, as used in Google Chrome before 25.0.1364.97 on Windows and Linux and before 25.0.1364.99 on Mac OS X and other products, allows remote attackers to cause a denial of service (out-of-bounds read) via a long packet.
Vendor | Product | Version | CPE |
---|---|---|---|
opus-codec | opus | * | cpe:2.3:a:opus-codec:opus:*:*:*:*:*:*:*:* |
chrome | - | cpe:2.3:a:google:chrome:-:*:*:*:*:*:*:* | |
chrome | * | cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* | |
linux | linux_kernel | - | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
apple | ipados | - | cpe:2.3:o:apple:ipados:-:*:*:*:*:*:*:* |
apple | iphone_os | - | cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:* |
apple | mac_os_x | - | cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:* |
apple | macos | - | cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* |
opensuse | opensuse | 12.1 | cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:* |
googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html
lists.opensuse.org/opensuse-updates/2013-03/msg00045.html
opus-codec.org/downloads/
code.google.com/p/chromium/issues/detail?id=160480
codereview.chromium.org/11575026
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16027
src.chromium.org/viewvc/chrome/trunk/deps/third_party/opus/src/opus_decoder.c?r1=173498&r2=173497&pathrev=173498
src.chromium.org/viewvc/chrome?view=rev&revision=173498