Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libvorbisidec@1.2.1%2Bgit20180316-7?distro=trixie
purl pkg:deb/debian/libvorbisidec@1.2.1%2Bgit20180316-7?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (12)
Vulnerability Summary Aliases
VCID-12w2-ffkf-7bfv vorbis: insufficient validation of Huffman tree causing memory corruption in _make_decode_tree() CVE-2008-2009
VCID-49kj-gbcz-6fd1 A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. CVE-2007-4066
VCID-55cd-r9yc-nfan Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. CVE-2009-3379
VCID-8qdb-sj7v-c3cb Multiple vulnerabilities in libvorbis might lead to the execution of arbitrary code. CVE-2008-1420
VCID-bv67-87hf-byf5 A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. CVE-2007-3106
VCID-bxdr-5t7k-rbdn The libtremor library has the same flaw as CVE-2018-5146. This library is used by Firefox in place of libvorbis on Android and ARM platforms.*Update: The 52.7.2 source release accidentally did not include this patch (the Mozilla-produced 52.7.2 binaries are fine). Anyone building 52.7.2 on ARM should use revision 5cd5586a2f48424a9031a3fa4c782954a9df9a52 instead of the released source. CVE-2018-5147
VCID-c3vm-d9f5-2kcj Multiple vulnerabilities in libvorbis might lead to the execution of arbitrary code. CVE-2008-1419
VCID-dgfg-2eq3-5ybm A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. CVE-2007-4029
VCID-gajm-zb2s-ukgz Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. CVE-2012-0444
VCID-mddv-hvgp-u3aa Multiple vulnerabilities in libvorbis might lead to the execution of arbitrary code. CVE-2008-1423
VCID-mekv-71pb-mfdw A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. CVE-2007-4065
VCID-xdfe-jqzv-rbb4 A processing error in libvorbis might result in the execution of arbitrary code or a Denial of Service. CVE-2009-2663

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:17:21.784903+00:00 Debian Importer Fixing VCID-49kj-gbcz-6fd1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T13:08:02.490740+00:00 Debian Importer Fixing VCID-gajm-zb2s-ukgz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:27:42.421900+00:00 Debian Importer Fixing VCID-bv67-87hf-byf5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:46:26.125363+00:00 Debian Importer Fixing VCID-mekv-71pb-mfdw https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:39:10.248789+00:00 Debian Importer Fixing VCID-12w2-ffkf-7bfv https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:05:13.249266+00:00 Debian Importer Fixing VCID-xdfe-jqzv-rbb4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:43:56.315590+00:00 Debian Importer Fixing VCID-dgfg-2eq3-5ybm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:40:56.238028+00:00 Debian Importer Fixing VCID-8qdb-sj7v-c3cb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:53:30.595713+00:00 Debian Importer Fixing VCID-c3vm-d9f5-2kcj https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:22:45.308878+00:00 Debian Importer Fixing VCID-mddv-hvgp-u3aa https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:20:18.324947+00:00 Debian Importer Fixing VCID-55cd-r9yc-nfan https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:53:53.211567+00:00 Debian Importer Fixing VCID-bxdr-5t7k-rbdn https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:09:09.396573+00:00 Debian Importer Fixing VCID-49kj-gbcz-6fd1 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T09:02:00.275181+00:00 Debian Importer Fixing VCID-gajm-zb2s-ukgz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:31:49.795755+00:00 Debian Importer Fixing VCID-bv67-87hf-byf5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:01:44.156719+00:00 Debian Importer Fixing VCID-mekv-71pb-mfdw https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:56:19.876745+00:00 Debian Importer Fixing VCID-12w2-ffkf-7bfv https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:31:44.737572+00:00 Debian Importer Fixing VCID-xdfe-jqzv-rbb4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:15:26.347551+00:00 Debian Importer Fixing VCID-dgfg-2eq3-5ybm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:13:32.416769+00:00 Debian Importer Fixing VCID-8qdb-sj7v-c3cb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:37:03.916821+00:00 Debian Importer Fixing VCID-c3vm-d9f5-2kcj https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:15:45.687324+00:00 Debian Importer Fixing VCID-mddv-hvgp-u3aa https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:14:18.972216+00:00 Debian Importer Fixing VCID-55cd-r9yc-nfan https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:58:15.350882+00:00 Debian Importer Fixing VCID-bxdr-5t7k-rbdn https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:29:56.844211+00:00 Debian Importer Fixing VCID-bxdr-5t7k-rbdn https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.811038+00:00 Debian Importer Fixing VCID-gajm-zb2s-ukgz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.779281+00:00 Debian Importer Fixing VCID-55cd-r9yc-nfan https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.746743+00:00 Debian Importer Fixing VCID-xdfe-jqzv-rbb4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.713791+00:00 Debian Importer Fixing VCID-12w2-ffkf-7bfv https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.681334+00:00 Debian Importer Fixing VCID-mddv-hvgp-u3aa https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.650735+00:00 Debian Importer Fixing VCID-8qdb-sj7v-c3cb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.619345+00:00 Debian Importer Fixing VCID-c3vm-d9f5-2kcj https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.587173+00:00 Debian Importer Fixing VCID-49kj-gbcz-6fd1 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.555144+00:00 Debian Importer Fixing VCID-mekv-71pb-mfdw https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.523147+00:00 Debian Importer Fixing VCID-dgfg-2eq3-5ybm https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.489177+00:00 Debian Importer Fixing VCID-bv67-87hf-byf5 https://security-tracker.debian.org/tracker/data/json 38.1.0