CVE-2018-5147

Debian Bug report logs - #893132 libvorbisidec: CVE-2018-5147: out-of-bounds memory write Package: src:libvorbisidec; Maintainer for src:libvorbisidec is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 16 Mar 2018 18:33:04 UTC Severi ...

Huzaifa Sidhpurwala discovered that an out-of-bounds memory write in the codebook parsing code of the Libtremor multimedia library could result in the execution of arbitrary code if a malformed Vorbis file is opened For the oldstable distribution (jessie), this problem has been fixed in version 102+svn18153-1~deb8u2 For the stable distribution ...

Richard Zhu and Huzaifa Sidhpurwala discovered that an out-of-bounds memory write when playing Vorbis media files could result in the execution of arbitrary code For the oldstable distribution (jessie), these problems have been fixed in version 5272esr-1~deb8u1 For the stable distribution (stretch), these problems have been fixed in version 52 ...

Mozilla Foundation Security Advisory 2018-08 Out of bounds memory write while processing Vorbis audio data Announced March 16, 2018 Impact critical Products Firefox, Firefox ESR Fixed in Firefox 5901 ...

An out of bounds memory write vulnerability has been discovered in libtremor while processing Vorbis audio data related to codebooks that are not an exact divisor of the partition size ...