Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2017-14632  

fXiph.Org libvorbis before 1.3.6 allows remote code execution upon freeing uninitialized memory in the function vorbis_analysis_headerout() in info.c when vi->channels<=0, a similar issue to Mozilla bug 550184.

Source
Severity Critical

Remote Yes

Type Arbitrary code execution

Description 

fXiph.Org libvorbis before 1.3.6 allows remote code execution upon freeing uninitialized memory in the function vorbis_analysis_headerout() in info.c when vi->channels<=0, a similar issue to Mozilla bug 550184.

AVG-658 lib32-libvorbis 1.3.5-1 1.3.6-1 Critical Fixed

AVG-367 libvorbis 1.3.5-1 1.3.6-1 Critical Fixed

19 Mar 2018 ASA-201803-21 AVG-658 lib32-libvorbis Critical multiple issues

16 Mar 2018 ASA-201803-12 AVG-367 libvorbis Critical multiple issues 

https://github.com/xiph/vorbis/commit/c1c2831fc7306d5fbd7bc800324efd12b28d327f

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started