Filtered by vendor Xiph
Subscribe
Search
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2020-23904 | 1 Xiph | 1 Speex | 2022-01-21 | 4.3 MEDIUM | 5.5 MEDIUM |
| ** DISPUTED ** A stack buffer overflow in speexenc.c of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. NOTE: the vendor states "I cannot reproduce it" and it "is a demo program." | |||||
| CVE-2020-23903 | 2 Fedoraproject, Xiph | 2 Fedora, Speex | 2021-12-15 | 4.3 MEDIUM | 5.5 MEDIUM |
| A Divide by Zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. | |||||
| CVE-2017-11548 | 1 Xiph | 1 Libao | 2020-05-28 | 4.3 MEDIUM | 5.5 MEDIUM |
| The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service (memory corruption) via a crafted MP3 file. | |||||
| CVE-2017-11331 | 1 Xiph | 1 Vorbis-tools | 2020-05-28 | 4.3 MEDIUM | 5.5 MEDIUM |
| The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (memory allocation error) via a crafted wav file. | |||||