Mumble 缓冲区错误漏洞

Mumble is a set of voice communication tools developed by Mumble Inc. for use in games. This tool allows players to engage in real-time voice conversations while playing games. Versions of Mumble prior to 1.6.870 contained a buffer error vulnerability; this vulnerability stemmed from access to...

Linux Distros Unpatched Vulnerability : CVE-2025-71264

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mumble before 1.6.870 is prone to an out-of-bounds array access, which may result in denial of service client crash. CVE-2025-71264 Note that Nessus relies on t...

EUVD-2021-13994

Malware in sbrugna...

EUVD-2014-0142

Malware in sbrugna...

EUVD-2014-3695

Malware in sbrugna...

EUVD-2012-0888

Malware in sbrugna...

EUVD-2014-0141

Malware in sbrugna...

EUVD-2018-13288

Malware in sbrugna...

SUSE CVE-2012-0863

Mumble 1.2.3 and earlier uses world-readable permissions for .local/share/data/Mumble/.mumble.sqlite files in home directories, which might allow local users to obtain a cleartext password and configuration data by reading a file...

SUSE CVE-2021-27229

Mumble before 1.3.4 allows remote code execution if a victim navigates to a crafted URL on a server list and clicks on the Open Webpage text...

USN-5195-1 mumble vulnerability

It was discovered that the Mumble client supported websites for public servers with arbitrary URL schemes. If a user were tricked into visiting a malicious website from the public server list, a remote attacker could possibly execute arbitrary code...

CVE-2014-3756

The client in Mumble 1.2.x before 1.2.6 allows remote attackers to force the loading of an external file and cause a denial of service hang and resource consumption via a crafted string that is treated as rich-text by a Qt widget, as demonstrated by the 1 user or 2 channel name in a Qt dialog, 3...

UBUNTU-CVE-2014-3756

The client in Mumble 1.2.x before 1.2.6 allows remote attackers to force the loading of an external file and cause a denial of service hang and resource consumption via a crafted string that is treated as rich-text by a Qt widget, as demonstrated by the 1 user or 2 channel name in a Qt dialog, 3...

CVE-2014-0045

The needSamples method in AudioOutputSpeech.cpp in the client in Mumble 1.2.4 and the 1.2.3 pre-release snapshots, Mumble for iOS 1.1 through 1.2.2, and MumbleKit before commit fd190328a9b24d37382b269a5674b0c0c7a7e36d does not check the return value of the opusdecodefloat function, which allows...

CVE-2014-0044

The opuspacketgetsamplesperframe function in client in Mumble 1.2.4 and the 1.2.3 pre-release snapshots allows remote attackers to cause a denial of service crash via a crafted length prefix value, which triggers a NULL pointer dereference or a heap-based buffer over-read aka "out-of-bounds array...