Libvorbis@* Security Vulnerabilities and Issues — Libvorbis@* CVE List

Lucene search

Xiph.orgLibvorbis*

3 matches found

CVE•added 2020/12/26 4:15 a.m.•98 views

CVE-2020-20412

lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking via a crafted OGG file. NOTE: this may overlap CVE-2018-5146.

6.5CVSS7.4AI score0.26243EPSS

CVE•added 2007/09/21 7:17 p.m.•45 views

CVE-2007-4066

Multiple buffer overflows in Xiph.Org libvorbis before 1.2.0 allow context-dependent attackers to cause a denial of service or have other unspecified impact via a crafted OGG file, aka trac Changesets 13162, 13168, 13169, 13170, 13172, 13211, and 13215, as demonstrated by an overflow in oggenc.exe ...

4.3CVSS6.7AI score0.01263EPSS

CVE•added 2007/09/21 7:17 p.m.•43 views

CVE-2007-4065

lib/vorbisfile.c in libvorbisfile in Xiph.Org libvorbis before 1.2.0 allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted OGG file, aka trac Changeset 13217.

4.3CVSS5.9AI score0.05408EPSS