Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2014-9639

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service crash via a crafted number of channels in a WAV file, whic...

5CVSS5.6AI score0.03575EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.23 views

Debian: Security Advisory (DLA-317-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS5.5AI score0.03786EPSS
Exploits3References2
CBLMariner
CBLMariner
added 2023/02/14 10:19 p.m.43 views

CVE-2014-9639 affecting package vorbis-tools for versions less than 1.4.0-35

CVE-2014-9639 affecting package vorbis-tools for versions less than 1.4.0-35. A patched version of the package is available...

5CVSS5.5AI score0.03575EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2017/07/05 12:0 a.m.28 views

Debian DLA-1010-1 : vorbis-tools security update

vorbis-tools is vulnerable to multiple issues that can result in denial of service. CVE-2014-9638 Divide by zero error in oggenc with a WAV file whose number of channels is set to zero. CVE-2014-9639 Integer overflow in oggenc via a crafted number of channels in a WAV file, which triggers an...

5CVSS5.7AI score0.03786EPSS
Exploits3References6
Debian
Debian
added 2017/07/03 9:34 a.m.24 views

[SECURITY] [DLA 1010-1] vorbis-tools security update

Package : vorbis-tools Version : 1.4.0-1+deb7u1 CVE ID : CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-6749 Debian Bug : 797461 776086 771363 vorbis-tools is vulnerable to multiple issues that can result in denial of service. CVE-2014-9638 Divide by zero error in oggenc with a WAV file whose...

5CVSS6.1AI score0.03786EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2015/09/30 12:0 a.m.34 views

Debian DLA-317-1 : vorbis-tools security update

Various issues have been fixed in Debian LTS squeeze for package vorbis-tools. CVE-2014-9638 A crafted WAV file with number of channels set to 0 will cause oggenc to crash due to a division by zero issue. This issue has been fixed upstream by providing a fix for CVE-2014-9639. Reported upstream b...

5CVSS5.7AI score0.03786EPSS
Exploits3References6
Debian
Debian
added 2015/09/29 9:8 a.m.30 views

[SECURITY] [DLA 317-1] vorbis-tools security update

Package : vorbis-tools Version : 1.4.0-1+deb6u1 CVE ID : CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-6749 Debian Bug : 771363 797461 776086 Various issues have been fixed in Debian LTS squeeze for package vorbis-tools. CVE-2014-9638 A crafted WAV file with number of channels set to 0 will...

5CVSS6.1AI score0.03786EPSS
Exploits3
OSV
OSV
added 2015/09/29 12:0 a.m.28 views

DLA-317-1 vorbis-tools - security update

Bulletin has no description...

5CVSS5.4AI score0.03786EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2015/06/10 12:0 a.m.29 views

SUSE SLED12 / SLES12 Security Update : vorbis-tools (SUSE-SU-2015:1014-1)

Vorbis tools was updated to fix division by zero and integer overflows by crafted WAV files CVE-2014-9638, CVE-2014-9639, bnc914439, bnc914441, that would allow attackers to crash the vorbis tools processes. Note that Tenable Network Security has extracted the preceding description block directly...

5CVSS5.6AI score0.03579EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2015/03/19 12:0 a.m.26 views

openSUSE Security Update : vorbis-tools (openSUSE-2015-239)

vorbis-tools was updated to fix division by zero and integer overflow by crafted WAV files CVE-2014-9638, CVE-2014-9639, bnc914439, bnc914441. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

5CVSS5.5AI score0.03579EPSS
Exploits2References4
Mageia
Mageia
added 2015/03/05 7:34 p.m.26 views

Updated vorbis-tools packages fix security vulnerabilities

Updated vorbis-tools package fixes security vulnerabilities: oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service divide-by-zero error and crash via a WAV file with the number of channels set to zero CVE-2014-9638. Integer overflow in oggenc in vorbis-tools 1.4.0 allo...

5CVSS5.7AI score0.03579EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2015/03/02 12:0 a.m.27 views

Fedora 20 : vorbis-tools-1.4.0-14.fc20 (2015-2330)

validate count of channels in the header CVE-2014-9638 and CVE-2014-9639 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

5CVSS5.6AI score0.03579EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2015/03/02 12:0 a.m.27 views

Fedora 21 : vorbis-tools-1.4.0-19.fc21 (2015-2335)

validate count of channels in the header CVE-2014-9638 and CVE-2014-9639 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

5CVSS5.6AI score0.03579EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2015/03/01 12:0 a.m.20 views

Fedora Update for vorbis-tools FEDORA-2015-2335

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5AI score
Exploits0References2
OSV
OSV
added 2015/01/23 3:59 p.m.4 views

CVE-2014-9639

Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service crash via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access...

6.4AI score
Exploits0References8
CVE
CVE
added 2015/01/23 3:0 p.m.70 views

CVE-2014-9639

CVE-2014-9639 affects vorbis-tools (og genc) when processing WAV input: an integer overflow triggered by a crafted number of channels can cause out-of-bounds memory access and crash (DoS). The issue is reported for vorbis-tools 1.4.0; several advisories note that patched versions are available (u...

5CVSS6.5AI score0.03575EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder