CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
88.9%
Integer overflow in the padding implementation in the
opus_packet_parse_impl function in src/opus_decoder.c in Opus before 1.0.2,
as used in Google Chrome before 25.0.1364.97 on Windows and Linux and
before 25.0.1364.99 on Mac OS X and other products, allows remote attackers
to cause a denial of service (out-of-bounds read) via a long packet.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | chromium-browser | < 25.0.1364.160-0ubuntu0.10.04.1 | UNKNOWN |
ubuntu | 11.10 | noarch | chromium-browser | < 25.0.1364.160-0ubuntu0.11.10.1 | UNKNOWN |
ubuntu | 12.04 | noarch | chromium-browser | < 25.0.1364.160-0ubuntu0.12.04.1 | UNKNOWN |
ubuntu | 12.10 | noarch | chromium-browser | < 25.0.1364.160-0ubuntu0.12.10.1 | UNKNOWN |