Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libvorbisidec@1.2.1%2Bgit20180316-8?distro=trixie
purl pkg:deb/debian/libvorbisidec@1.2.1%2Bgit20180316-8?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (12)
Vulnerability Summary Aliases
VCID-12w2-ffkf-7bfv vorbis: insufficient validation of Huffman tree causing memory corruption in _make_decode_tree() CVE-2008-2009
VCID-49kj-gbcz-6fd1 A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. CVE-2007-4066
VCID-55cd-r9yc-nfan Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. CVE-2009-3379
VCID-8qdb-sj7v-c3cb Multiple vulnerabilities in libvorbis might lead to the execution of arbitrary code. CVE-2008-1420
VCID-bv67-87hf-byf5 A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. CVE-2007-3106
VCID-bxdr-5t7k-rbdn The libtremor library has the same flaw as CVE-2018-5146. This library is used by Firefox in place of libvorbis on Android and ARM platforms.*Update: The 52.7.2 source release accidentally did not include this patch (the Mozilla-produced 52.7.2 binaries are fine). Anyone building 52.7.2 on ARM should use revision 5cd5586a2f48424a9031a3fa4c782954a9df9a52 instead of the released source. CVE-2018-5147
VCID-c3vm-d9f5-2kcj Multiple vulnerabilities in libvorbis might lead to the execution of arbitrary code. CVE-2008-1419
VCID-dgfg-2eq3-5ybm A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. CVE-2007-4029
VCID-gajm-zb2s-ukgz Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. CVE-2012-0444
VCID-mddv-hvgp-u3aa Multiple vulnerabilities in libvorbis might lead to the execution of arbitrary code. CVE-2008-1423
VCID-mekv-71pb-mfdw A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. CVE-2007-4065
VCID-xdfe-jqzv-rbb4 A processing error in libvorbis might result in the execution of arbitrary code or a Denial of Service. CVE-2009-2663

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:17:21.791730+00:00 Debian Importer Fixing VCID-49kj-gbcz-6fd1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T13:08:02.496719+00:00 Debian Importer Fixing VCID-gajm-zb2s-ukgz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:27:42.428868+00:00 Debian Importer Fixing VCID-bv67-87hf-byf5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:46:26.132062+00:00 Debian Importer Fixing VCID-mekv-71pb-mfdw https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:39:10.255575+00:00 Debian Importer Fixing VCID-12w2-ffkf-7bfv https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:05:13.256044+00:00 Debian Importer Fixing VCID-xdfe-jqzv-rbb4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:43:56.321577+00:00 Debian Importer Fixing VCID-dgfg-2eq3-5ybm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:40:56.242946+00:00 Debian Importer Fixing VCID-8qdb-sj7v-c3cb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:53:30.603017+00:00 Debian Importer Fixing VCID-c3vm-d9f5-2kcj https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:22:45.315695+00:00 Debian Importer Fixing VCID-mddv-hvgp-u3aa https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:20:18.331198+00:00 Debian Importer Fixing VCID-55cd-r9yc-nfan https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:53:53.217883+00:00 Debian Importer Fixing VCID-bxdr-5t7k-rbdn https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:09:09.404097+00:00 Debian Importer Fixing VCID-49kj-gbcz-6fd1 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T09:02:00.282048+00:00 Debian Importer Fixing VCID-gajm-zb2s-ukgz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:31:49.801950+00:00 Debian Importer Fixing VCID-bv67-87hf-byf5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:01:44.164011+00:00 Debian Importer Fixing VCID-mekv-71pb-mfdw https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:56:19.881020+00:00 Debian Importer Fixing VCID-12w2-ffkf-7bfv https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:31:44.744252+00:00 Debian Importer Fixing VCID-xdfe-jqzv-rbb4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:15:26.351815+00:00 Debian Importer Fixing VCID-dgfg-2eq3-5ybm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:13:32.421936+00:00 Debian Importer Fixing VCID-8qdb-sj7v-c3cb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:37:03.924077+00:00 Debian Importer Fixing VCID-c3vm-d9f5-2kcj https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:15:45.694067+00:00 Debian Importer Fixing VCID-mddv-hvgp-u3aa https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:14:18.978522+00:00 Debian Importer Fixing VCID-55cd-r9yc-nfan https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:58:15.358342+00:00 Debian Importer Fixing VCID-bxdr-5t7k-rbdn https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:29:56.861572+00:00 Debian Importer Fixing VCID-bxdr-5t7k-rbdn https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.827437+00:00 Debian Importer Fixing VCID-gajm-zb2s-ukgz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.795448+00:00 Debian Importer Fixing VCID-55cd-r9yc-nfan https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.763305+00:00 Debian Importer Fixing VCID-xdfe-jqzv-rbb4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.730528+00:00 Debian Importer Fixing VCID-12w2-ffkf-7bfv https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.697740+00:00 Debian Importer Fixing VCID-mddv-hvgp-u3aa https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.665572+00:00 Debian Importer Fixing VCID-8qdb-sj7v-c3cb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.636914+00:00 Debian Importer Fixing VCID-c3vm-d9f5-2kcj https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.603440+00:00 Debian Importer Fixing VCID-49kj-gbcz-6fd1 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.571555+00:00 Debian Importer Fixing VCID-mekv-71pb-mfdw https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.539444+00:00 Debian Importer Fixing VCID-dgfg-2eq3-5ybm https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:29:56.507410+00:00 Debian Importer Fixing VCID-bv67-87hf-byf5 https://security-tracker.debian.org/tracker/data/json 38.1.0