Lucene search
K

1001 matches found

Fedora
Fedora
added 2026/06/19 1:10 a.m.10 views

[SECURITY] Fedora 43 Update: vorbis-tools-1.4.3-4.fc43

Ogg Vorbis is a fully open, non-proprietary, patent- and royalty-free, general-purpose compressed audio format for audio and music at fixed and variable bitrates from 16 to 128 kbps/channel. The vorbis package contains an encoder, a decoder, a playback tool, and a comment editor...

8.2CVSS5.3AI score0.00515EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in libstb

STBVorbis is a single-file library licensed under MIT that processes OGG Vorbis files. A maliciously crafted file may cause memory writes to exceed the allocated heap buffer in startdecoder. The root cause of this issue is a potential integer overflow in sizeofchar f-commentlistlength, which may...

7.8CVSS7.6AI score0.00518EPSS
Exploits0References2
Fedora
Fedora
added 2026/03/14 2:20 a.m.6 views

[SECURITY] Fedora 43 Update: SDL3_sound-3.0.0~20260117gitb00e4a3-1.fc43

SDLsound is a library that handles the decoding of several popular sound file formats, such as .WAV and .OGG. It is meant to make the programmer's sound playback tasks simpler. The programmer gives SDLsound a filename, or feeds it data directly from one of many sources, and then reads the decoded...

5.5CVSS5.8AI score0.00147EPSS
Exploits0
Fedora
Fedora
added 2026/03/14 2:20 a.m.8 views

[SECURITY] Fedora 43 Update: SDL2_sound-2.0.5^20260117git1be041b-1.fc43

SDLsound is a library that handles the decoding of several popular sound file formats, such as .WAV and .OGG. It is meant to make the programmer's sound playback tasks simpler. The programmer gives SDLsound a filename, or feeds it data directly from one of many sources, and then reads the decoded...

5.5CVSS5.8AI score0.00147EPSS
Exploits0
Fedora
Fedora
added 2026/03/14 12:17 a.m.7 views

[SECURITY] Fedora 44 Update: SDL2_sound-2.0.5^20260117git1be041b-1.fc44

SDLsound is a library that handles the decoding of several popular sound file formats, such as .WAV and .OGG. It is meant to make the programmer's sound playback tasks simpler. The programmer gives SDLsound a filename, or feeds it data directly from one of many sources, and then reads the decoded...

5.5CVSS5.8AI score0.00147EPSS
Exploits0
Fedora
Fedora
added 2026/03/14 12:17 a.m.7 views

[SECURITY] Fedora 44 Update: SDL3_sound-3.0.0~20260117gitb00e4a3-1.fc44

SDLsound is a library that handles the decoding of several popular sound file formats, such as .WAV and .OGG. It is meant to make the programmer's sound playback tasks simpler. The programmer gives SDLsound a filename, or feeds it data directly from one of many sources, and then reads the decoded...

5.5CVSS5.8AI score0.00147EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 8 : gstreamer1-plugins-base-1.16.1-5.el8_10 (AXSA:2024-9435:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9435:04 advisory. gstreamer1-plugins-base: GStreamer has a stack-buffer overflow in vorbishandleidentificationpacket CVE-2024-47538 gstreamer1-plugins-base:...

9.8CVSS5.7AI score0.01272EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : libsndfile-1.0.28-16.el8_10 (AXSA:2024-9429:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9429:03 advisory. libsndfile: Segmentation fault error in oggvorbis.c:417 vorbisanalysiswrote CVE-2024-50612 Tenable has extracted the preceding description block directly fro...

5.5CVSS5.6AI score0.00308EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 9 : libsndfile-1.0.31-8.el9_5.2 (AXSA:2024-9490:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9490:04 advisory. libsndfile: Segmentation fault error in oggvorbis.c:417 vorbisanalysiswrote CVE-2024-50612 Tenable has extracted the preceding description block directly fro...

5.5CVSS5.6AI score0.00308EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-70310

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap overflow in the vorbistointern function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted .ogg file. CVE-2025-70310 Note tha...

5.5CVSS5.5AI score0.00141EPSS
Exploits1References3
NVD
NVD
added 2026/01/15 5:16 p.m.8 views

CVE-2025-70310

A heap overflow in the vorbistointern function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted .ogg file...

5.5CVSS0.00141EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/01/15 5:16 p.m.4 views

CVE-2025-70310

A heap overflow in the vorbistointern function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted .ogg file...

5.5CVSS5.9AI score0.00141EPSS
Exploits1References2
OSV
OSV
added 2026/01/15 5:16 p.m.9 views

UBUNTU-CVE-2025-70310

A heap overflow in the vorbistointern function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted .ogg file...

5.5CVSS5.8AI score0.00141EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/01/15 12:0 a.m.3 views

CVE-2025-70310

A heap overflow in the vorbistointern function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted .ogg file...

6.6AI score0.00141EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/01/15 12:0 a.m.2 views

CVE-2025-70310

A heap overflow in the vorbistointern function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted .ogg file...

5.5CVSS5.5AI score0.00141EPSS
Exploits1References2
EUVD
EUVD
added 2026/01/15 12:0 a.m.5 views

EUVD-2026-2746

A heap overflow in the vorbistointern function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted .ogg file...

5.5CVSS6.5AI score0.00141EPSS
Exploits1References2
CVE
CVE
added 2026/01/15 12:0 a.m.22 views

CVE-2025-70310

GPAC v2.4.0 contains a heap overflow in the vorbis_to_intern() function, exploitable via a crafted .ogg file to cause a Denial of Service. Multiple connected sources (CNVD, Red Hat, Debian/OSV, NVD) corroborate a DoS-inducing overflow in vorbis_to_intern, with CVSS/metrics indicating a local atta...

5.5CVSS6.6AI score0.00141EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/01/15 12:0 a.m.22 views

CVE-2025-70310

A heap overflow in the vorbistointern function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted .ogg file...

0.00141EPSS
Exploits1References1
OSV
OSV
added 2026/01/15 12:0 a.m.6 views

CVE-2025-70310

A heap overflow in the vorbistointern function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted .ogg file...

5.5CVSS5.5AI score0.00141EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/01/15 12:0 a.m.3 views

CVE-2025-70298

GPAC v2.4.0 was discovered to contain an out-of-bounds read in the oggdmxparsetags function...

8.2CVSS5.2AI score0.00394EPSS
Exploits1
Rows per page
Query Builder