Buffer overflow in the aiff_open function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service (crash) via a crafted AIFF file.

...

The vulnerability of the aiff_open function (oggenc/audio.c) in the vorbis-tools package allows a hacker to cause a service failure.

The vulnerability of the aiffopen function oggenc/audio.c in the vorbis-tools package arises from operations that occur outside of the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause service interruptions by using a specially created AIFF file...

openSUSE Security Update : vorbis-tools (openSUSE-2015-633)

vorbis-tools was updated to fix a buffer overflow in aiffopen, that could be used to crash or potentially execute code when opening aiff format files. CVE-2015-6749, bsc943795. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

CVE-2015-6749

Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...

DEBIAN-CVE-2015-6749

Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...

CVE-2015-6749

Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...

Buffer overflow

Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...

CVE-2015-6749

Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...

CVE-2015-6749

Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...