20 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-6749
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a...
Debian: Security Advisory (DLA-317-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-6749 affecting package vorbis-tools for versions less than 1.4.0-35
CVE-2015-6749 affecting package vorbis-tools for versions less than 1.4.0-35. A patched version of the package is available...
CVE-2015-6749 affecting package vorbis-tools for versions less than 1.4.0-35
CVE-2015-6749 affecting package vorbis-tools for versions less than 1.4.0-35. A patched version of the package is available...
SUSE: Security Advisory (SUSE-SU-2015:1765-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-1010-1 : vorbis-tools security update
vorbis-tools is vulnerable to multiple issues that can result in denial of service. CVE-2014-9638 Divide by zero error in oggenc with a WAV file whose number of channels is set to zero. CVE-2014-9639 Integer overflow in oggenc via a crafted number of channels in a WAV file, which triggers an...
[SECURITY] [DLA 1010-1] vorbis-tools security update
Package : vorbis-tools Version : 1.4.0-1+deb7u1 CVE ID : CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-6749 Debian Bug : 797461 776086 771363 vorbis-tools is vulnerable to multiple issues that can result in denial of service. CVE-2014-9638 Divide by zero error in oggenc with a WAV file whose...
Mageia: Security Advisory (MGASA-2015-0353)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : vorbis-tools (openSUSE-2015-633)
vorbis-tools was updated to fix a buffer overflow in aiffopen, that could be used to crash or potentially execute code when opening aiff format files. CVE-2015-6749, bsc943795. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...
Debian DLA-317-1 : vorbis-tools security update
Various issues have been fixed in Debian LTS squeeze for package vorbis-tools. CVE-2014-9638 A crafted WAV file with number of channels set to 0 will cause oggenc to crash due to a division by zero issue. This issue has been fixed upstream by providing a fix for CVE-2014-9639. Reported upstream b...
[SECURITY] [DLA 317-1] vorbis-tools security update
Package : vorbis-tools Version : 1.4.0-1+deb6u1 CVE ID : CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-6749 Debian Bug : 771363 797461 776086 Various issues have been fixed in Debian LTS squeeze for package vorbis-tools. CVE-2014-9638 A crafted WAV file with number of channels set to 0 will...
DLA-317-1 vorbis-tools - security update
Bulletin has no description...
SUSE-SU-2015:1765-1 Security update for vorbis-tools
vorbis-tools was updated to fix a buffer overflow in aiffopen that could be triggered by opening prepared malicious files. CVE-2015-6749, bsc943795...
AZL-7403 CVE-2015-6749 affecting package vorbis-tools for versions less than 1.4.0-35
Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...
CVE-2015-6749
Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...
CVE-2015-6749
CVE-2015-6749 is a buffer overflow in the aiff_open function of oggenc/audio.c in vorbis-tools
Fedora 22 : vorbis-tools-1.4.0-20.fc22 (2015-14663)
oggenc: fix large alloca on bad AIFF input CVE-2015-6749 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Fedora Update for vorbis-tools FEDORA-2015-14663
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated vorbis-tools packages fix CVE-2015-6749
Updated vorbis-tools package fixes security vulnerability: A buffer overread is possible in vorbis-tools in oggenc/audio.c when opening a specially crafted AIFF file CVE-2015-6749...
Fedora 23 : vorbis-tools-1.4.0-22.fc23 (2015-14664)
oggenc: fix large alloca on bad AIFF input CVE-2015-6749 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...