Vorbis-tools Security Vulnerabilities and Issues — Vorbis-tools CVE List

Lucene search

XiphVorbis-tools

6 matches found

CVE•added 2023/10/02 9:15 p.m.•72 views

CVE-2023-43361

Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files.

7.8CVSS7.7AI score0.00029EPSS

CVE•added 2017/07/31 1:29 p.m.•67 views

CVE-2017-11331

The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (memory allocation error) via a crafted wav file.

5.5CVSS5.1AI score0.02059EPSS

CVE•added 2015/09/21 7:59 p.m.•58 views

CVE-2015-6749

Buffer overflow in the aiff_open function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service (crash) via a crafted AIFF file.

4.3CVSS6.5AI score0.0252EPSS

CVE•added 2015/01/23 3:59 p.m.•56 views

CVE-2014-9639

Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (crash) via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access.

5CVSS6.5AI score0.0136EPSS

CVE•added 2015/01/23 3:59 p.m.•54 views

CVE-2014-9638

oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a WAV file with the number of channels set to zero.

5CVSS6.3AI score0.01279EPSS

CVE•added 2015/01/23 3:59 p.m.•45 views

CVE-2014-9640

oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted raw file.

5CVSS6.2AI score0.01279EPSS