Search for packages
| purl | pkg:deb/debian/libvorbis@1.3.6-2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-125v-6567-aaam | An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. This vulnerability affects Firefox < 59.0.1, Firefox ESR < 52.7.2, and Thunderbird < 52.7. |
CVE-2018-5146
|
| VCID-1n2s-g3w5-aaak | The vorbis_analysis_wrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (OOM) via a crafted wav file. |
CVE-2017-11333
|
| VCID-24pt-1dej-aaak | Xiph.Org libvorbis 1.3.5 allows Remote Code Execution upon freeing uninitialized memory in the function vorbis_analysis_headerout() in info.c when vi->channels<=0, a similar issue to Mozilla bug 550184. |
CVE-2017-14632
|
| VCID-5qxt-rvzs-aaan | The bark_noise_hybridmp function in psy.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact via a crafted mp4 file. |
CVE-2017-14160
|
| VCID-h9pz-jgxg-aaak | bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read. |
CVE-2018-10393
|
| VCID-k1vq-z733-aaak | In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability exists in the function mapping0_forward() in mapping0.c, which may lead to DoS when operating on a crafted audio file with vorbis_analysis(). |
CVE-2017-14633
|
| VCID-z8nu-tk5t-aaag | mapping0_forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a denial of service (heap-based buffer overflow or over-read) or possibly have unspecified other impact via a crafted file. |
CVE-2018-10392
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:17:18.449399+00:00 | Debian Oval Importer | Fixing | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T16:30:58.317225+00:00 | Debian Oval Importer | Fixing | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:53:31.341149+00:00 | Debian Oval Importer | Fixing | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:57:02.525682+00:00 | Debian Oval Importer | Fixing | VCID-z8nu-tk5t-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:37:05.019949+00:00 | Debian Oval Importer | Fixing | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:10:42.109332+00:00 | Debian Oval Importer | Fixing | VCID-5qxt-rvzs-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T12:14:38.182596+00:00 | Debian Oval Importer | Fixing | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T12:04:48.284622+00:00 | Debian Oval Importer | Fixing | VCID-h9pz-jgxg-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T00:43:35.372093+00:00 | Debian Oval Importer | Fixing | VCID-5qxt-rvzs-aaan | None | 36.1.3 |
| 2025-06-21T00:05:52.888954+00:00 | Debian Oval Importer | Fixing | VCID-1n2s-g3w5-aaak | None | 36.1.3 |
| 2025-06-21T00:04:10.785599+00:00 | Debian Oval Importer | Fixing | VCID-z8nu-tk5t-aaag | None | 36.1.3 |
| 2025-06-20T23:45:48.615082+00:00 | Debian Oval Importer | Fixing | VCID-24pt-1dej-aaak | None | 36.1.3 |
| 2025-06-20T22:59:49.497752+00:00 | Debian Oval Importer | Fixing | VCID-k1vq-z733-aaak | None | 36.1.3 |
| 2025-06-20T21:36:44.428853+00:00 | Debian Oval Importer | Fixing | VCID-125v-6567-aaam | None | 36.1.3 |
| 2025-06-20T21:03:04.688752+00:00 | Debian Oval Importer | Fixing | VCID-h9pz-jgxg-aaak | None | 36.1.3 |
| 2025-06-08T13:02:01.301057+00:00 | Debian Oval Importer | Fixing | VCID-z8nu-tk5t-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:46:48.687070+00:00 | Debian Oval Importer | Fixing | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:43:34.682733+00:00 | Debian Oval Importer | Fixing | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:43:08.860719+00:00 | Debian Oval Importer | Fixing | VCID-h9pz-jgxg-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:46:06.457429+00:00 | Debian Oval Importer | Fixing | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T09:16:47.641787+00:00 | Debian Oval Importer | Fixing | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:46:48.093365+00:00 | Debian Oval Importer | Fixing | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:50:21.345215+00:00 | Debian Oval Importer | Fixing | VCID-z8nu-tk5t-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:30:11.764892+00:00 | Debian Oval Importer | Fixing | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:05:28.159384+00:00 | Debian Oval Importer | Fixing | VCID-5qxt-rvzs-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:19:32.460368+00:00 | Debian Oval Importer | Fixing | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:12:45.185259+00:00 | Debian Oval Importer | Fixing | VCID-h9pz-jgxg-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T18:06:08.102966+00:00 | Debian Oval Importer | Fixing | VCID-5qxt-rvzs-aaan | None | 36.1.0 |
| 2025-06-07T17:28:39.523302+00:00 | Debian Oval Importer | Fixing | VCID-1n2s-g3w5-aaak | None | 36.1.0 |
| 2025-06-07T17:26:58.774370+00:00 | Debian Oval Importer | Fixing | VCID-z8nu-tk5t-aaag | None | 36.1.0 |
| 2025-06-07T17:08:41.592499+00:00 | Debian Oval Importer | Fixing | VCID-24pt-1dej-aaak | None | 36.1.0 |
| 2025-06-07T16:23:01.126003+00:00 | Debian Oval Importer | Fixing | VCID-k1vq-z733-aaak | None | 36.1.0 |
| 2025-06-07T14:59:23.509101+00:00 | Debian Oval Importer | Fixing | VCID-125v-6567-aaam | None | 36.1.0 |
| 2025-06-07T14:29:37.655634+00:00 | Debian Oval Importer | Fixing | VCID-h9pz-jgxg-aaak | None | 36.1.0 |
| 2025-04-12T22:27:36.099149+00:00 | Debian Oval Importer | Fixing | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:48:05.045675+00:00 | Debian Oval Importer | Fixing | VCID-5qxt-rvzs-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:49:28.207963+00:00 | Debian Oval Importer | Fixing | VCID-z8nu-tk5t-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:33:43.178994+00:00 | Debian Oval Importer | Fixing | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:30:25.867087+00:00 | Debian Oval Importer | Fixing | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:29:58.823303+00:00 | Debian Oval Importer | Fixing | VCID-h9pz-jgxg-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:30:58.727886+00:00 | Debian Oval Importer | Fixing | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T07:48:53.390455+00:00 | Debian Oval Importer | Fixing | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T07:18:21.956048+00:00 | Debian Oval Importer | Fixing | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:22:48.334977+00:00 | Debian Oval Importer | Fixing | VCID-z8nu-tk5t-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:03:00.203229+00:00 | Debian Oval Importer | Fixing | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T04:37:30.510092+00:00 | Debian Oval Importer | Fixing | VCID-5qxt-rvzs-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:50:33.153143+00:00 | Debian Oval Importer | Fixing | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:43:43.462907+00:00 | Debian Oval Importer | Fixing | VCID-h9pz-jgxg-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T16:43:16.934588+00:00 | Debian Oval Importer | Fixing | VCID-5qxt-rvzs-aaan | None | 36.0.0 |
| 2025-04-07T16:03:07.310876+00:00 | Debian Oval Importer | Fixing | VCID-1n2s-g3w5-aaak | None | 36.0.0 |
| 2025-04-07T16:01:21.474992+00:00 | Debian Oval Importer | Fixing | VCID-z8nu-tk5t-aaag | None | 36.0.0 |
| 2025-04-07T15:42:14.965457+00:00 | Debian Oval Importer | Fixing | VCID-24pt-1dej-aaak | None | 36.0.0 |
| 2025-04-07T14:54:49.030641+00:00 | Debian Oval Importer | Fixing | VCID-k1vq-z733-aaak | None | 36.0.0 |
| 2025-04-07T13:31:15.352080+00:00 | Debian Oval Importer | Fixing | VCID-125v-6567-aaam | None | 36.0.0 |
| 2025-04-07T13:01:51.701809+00:00 | Debian Oval Importer | Fixing | VCID-h9pz-jgxg-aaak | None | 36.0.0 |