Lucene search
+L

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:28 a.m.13 views

CVE-2023-45678

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

7.8CVSS7.1AI score0.0073EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2023-45678

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maxim...

7.8CVSS7AI score0.0073EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/10/24 12:59 a.m.3 views

SUSE CVE-2023-45678

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

7.8CVSS7.8AI score0.0073EPSS
Exploits0References3
NVD
NVD
added 2023/10/21 12:15 a.m.35 views

CVE-2023-45678

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

7.8CVSS7.2AI score0.0073EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/10/21 12:15 a.m.17 views

CVE-2023-45678

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

7.8CVSS7AI score0.0073EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2023/10/20 11:26 p.m.13 views

CVE-2023-45678 Off-by-one heap buffer write in start_decoder in stb_vorbis

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

6.5CVSS7.9AI score0.0073EPSS
Exploits0References3
CVE
CVE
added 2023/10/20 11:26 p.m.83 views

CVE-2023-45678

CVE-2023-45678 affects the stb_vorbis library (open-source Ogg Vorbis decoder). The root cause described in multiple sources is an out-of-bounds write in start_decoder where m->submaps can be up to 16, but submap_floor and submap_residue are declared as 15-element arrays, creating a potential ...

7.8CVSS7.2AI score0.0073EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/10/20 11:26 p.m.45 views

CVE-2023-45678 Off-by-one heap buffer write in start_decoder in stb_vorbis

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

6.5CVSS8.1AI score0.0073EPSS
Exploits0References3
Rows per page
Query Builder