33 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-10393
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - barknoisehybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read. CVE-2018-10393 Note that Nessus relies on the presence of the package...
RHEL 7 : libvorbis (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libvorbis: heap buffer overflow in mapping0forward function CVE-2018-10392 - The vorbisanalysiswrote...
CVE-2018-10393 affecting package libvorbis for versions less than 1.3.7-1
CVE-2018-10393 affecting package libvorbis for versions less than 1.3.7-1. An upgraded version of the package is available that resolves this issue...
Oracle Linux 8 : libvorbis (ELSA-2019-3703)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-3703 advisory. 1.3.6-2 - Sync with git for CVE-2017-14160, CVE-2018-10392, CVE-2018-10393 Tenable has extracted the preceding description block directly from the Orac...
Ubuntu 16.04 ESM : Vorbis vulnerabilities (USN-5420-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5420-1 advisory. It was discovered that Vorbis incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service, or possibly...
USN-5420-1: Vorbis vulnerabilities
It was discovered that Vorbis incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service, or possibly execute arbitrary code. CVE-2017-14160, CVE-2018-10392, CVE-2018-10393...
[SECURITY] [DLA 2828-1] libvorbis security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2828-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk November 27, 2021 https://wiki.debian.org/LTS -...
EulerOS 2.0 SP9 : libvorbis (EulerOS-SA-2021-2274)
According to the versions of the libvorbis packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - barknoisehybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.CVE-2018-10393 - The barknoisehybridmp function in...
Huawei EulerOS: Security Advisory for libvorbis (EulerOS-SA-2021-2248)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libvorbis (EulerOS-SA-2021-2274)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:1321-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization for ARM 64 3.0.2.0 : libvorbis (EulerOS-SA-2020-1972)
According to the versions of the libvorbis package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A heap-based buffer overflow was found in the encoder functionality of the libvorbis library. An attacker could crea...
Huawei EulerOS: Security Advisory for libvorbis (EulerOS-SA-2020-1926)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware 14.0 / 14.1 / 14.2 / current : libvorbis (SSA:2020-186-01)
New libvorbis packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2020-186-01. The text itself is copyright C Slackware...
[slackware-security] libvorbis
New libvorbis packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libvorbis-1.3.7-i586-1slack14.2.txz: Upgraded. Fix out-of-bounds read encoding very low sample rates. For more...
GLSA-202003-36 : libvorbis: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202003-36 libvorbis: Multiple vulnerabilities Multiple vulnerabilities have been discovered in libvorbis. Please review the CVE identifiers referenced below for details. Impact : A remote attacker, by enticing the user to process ...
EulerOS Virtualization for ARM 64 3.0.3.0 : libvorbis (EulerOS-SA-2019-2345)
According to the versions of the libvorbis package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - barknoisehybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.CVE-2018-10393 -...
Debian: Security Advisory (DLA-2013-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
libvorbis security update
1.3.6-2 - Sync with git for CVE-2017-14160, CVE-2018-10392, CVE-2018-10393...
RHEL 8 : libvorbis (RHSA-2019:3703)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3703 advisory. The libvorbis package contains runtime libraries for use in programs that support Ogg Vorbis, a fully open, non-proprietary, patent- and...