Search for packages
| purl | pkg:deb/debian/libvorbis@1.3.2-1.3 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-125v-6567-aaam
Aliases: CVE-2018-5146 |
An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. This vulnerability affects Firefox < 59.0.1, Firefox ESR < 52.7.2, and Thunderbird < 52.7. |
Affected by 7 other vulnerabilities. Affected by 7 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-1n2s-g3w5-aaak
Aliases: CVE-2017-11333 |
The vorbis_analysis_wrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (OOM) via a crafted wav file. |
Affected by 7 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-24pt-1dej-aaak
Aliases: CVE-2017-14632 |
Xiph.Org libvorbis 1.3.5 allows Remote Code Execution upon freeing uninitialized memory in the function vorbis_analysis_headerout() in info.c when vi->channels<=0, a similar issue to Mozilla bug 550184. |
Affected by 7 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-5qxt-rvzs-aaan
Aliases: CVE-2017-14160 |
The bark_noise_hybridmp function in psy.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact via a crafted mp4 file. |
Affected by 0 other vulnerabilities. |
|
VCID-h9pz-jgxg-aaak
Aliases: CVE-2018-10393 |
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read. |
Affected by 0 other vulnerabilities. |
|
VCID-k1vq-z733-aaak
Aliases: CVE-2017-14633 |
In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability exists in the function mapping0_forward() in mapping0.c, which may lead to DoS when operating on a crafted audio file with vorbis_analysis(). |
Affected by 7 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-z8nu-tk5t-aaag
Aliases: CVE-2018-10392 |
mapping0_forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a denial of service (heap-based buffer overflow or over-read) or possibly have unspecified other impact via a crafted file. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-rru1-3cfp-aaah | Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Ogg Vorbis file. |
CVE-2012-0444
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:17:18.441138+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T18:33:16.982909+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T16:33:04.134704+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T16:30:58.309864+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:53:31.333839+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:57:02.511763+00:00 | Debian Oval Importer | Affected by | VCID-z8nu-tk5t-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:37:05.012075+00:00 | Debian Oval Importer | Affected by | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:10:42.098879+00:00 | Debian Oval Importer | Affected by | VCID-5qxt-rvzs-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T12:14:38.175181+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T12:04:48.275925+00:00 | Debian Oval Importer | Affected by | VCID-h9pz-jgxg-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T11:04:07.011841+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.3 |
| 2025-06-21T10:58:07.908168+00:00 | Debian Oval Importer | Affected by | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.3 |
| 2025-06-21T10:24:44.196480+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.3 |
| 2025-06-21T10:18:29.471196+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.3 |
| 2025-06-21T09:53:01.809397+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.3 |
| 2025-06-21T00:43:35.364826+00:00 | Debian Oval Importer | Affected by | VCID-5qxt-rvzs-aaan | None | 36.1.3 |
| 2025-06-21T00:05:52.881137+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | None | 36.1.3 |
| 2025-06-21T00:04:10.776655+00:00 | Debian Oval Importer | Affected by | VCID-z8nu-tk5t-aaag | None | 36.1.3 |
| 2025-06-20T22:59:49.489059+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | None | 36.1.3 |
| 2025-06-20T21:06:46.007107+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | None | 36.1.3 |
| 2025-06-20T21:03:04.682409+00:00 | Debian Oval Importer | Affected by | VCID-h9pz-jgxg-aaak | None | 36.1.3 |
| 2025-06-20T19:55:11.414973+00:00 | Debian Oval Importer | Affected by | VCID-24pt-1dej-aaak | None | 36.1.3 |
| 2025-06-20T19:51:53.390559+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | None | 36.1.3 |
| 2025-06-08T13:02:01.293888+00:00 | Debian Oval Importer | Affected by | VCID-z8nu-tk5t-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:46:48.679818+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:43:34.676475+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:43:08.854642+00:00 | Debian Oval Importer | Affected by | VCID-h9pz-jgxg-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:46:06.450185+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:03:41.629165+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T09:18:49.673614+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T09:16:47.635782+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:46:48.087296+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:50:21.339151+00:00 | Debian Oval Importer | Affected by | VCID-z8nu-tk5t-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:30:11.758912+00:00 | Debian Oval Importer | Affected by | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:05:28.152114+00:00 | Debian Oval Importer | Affected by | VCID-5qxt-rvzs-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:19:32.453034+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:12:45.179110+00:00 | Debian Oval Importer | Affected by | VCID-h9pz-jgxg-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T04:34:09.474179+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.0 |
| 2025-06-08T04:31:01.532880+00:00 | Debian Oval Importer | Affected by | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.0 |
| 2025-06-08T04:10:36.569928+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.0 |
| 2025-06-08T04:06:03.984426+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.0 |
| 2025-06-08T03:41:44.151464+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.0 |
| 2025-06-07T18:06:08.096592+00:00 | Debian Oval Importer | Affected by | VCID-5qxt-rvzs-aaan | None | 36.1.0 |
| 2025-06-07T17:28:39.516154+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | None | 36.1.0 |
| 2025-06-07T17:26:58.768253+00:00 | Debian Oval Importer | Affected by | VCID-z8nu-tk5t-aaag | None | 36.1.0 |
| 2025-06-07T16:23:01.119110+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | None | 36.1.0 |
| 2025-06-07T14:32:22.214510+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | None | 36.1.0 |
| 2025-06-07T14:29:37.649423+00:00 | Debian Oval Importer | Affected by | VCID-h9pz-jgxg-aaak | None | 36.1.0 |
| 2025-06-07T13:45:27.034149+00:00 | Debian Oval Importer | Affected by | VCID-24pt-1dej-aaak | None | 36.1.0 |
| 2025-06-07T13:43:19.424566+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | None | 36.1.0 |
| 2025-04-12T22:27:36.079152+00:00 | Debian Oval Importer | Affected by | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:48:05.025741+00:00 | Debian Oval Importer | Affected by | VCID-5qxt-rvzs-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:49:28.187977+00:00 | Debian Oval Importer | Affected by | VCID-z8nu-tk5t-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:33:43.158982+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:30:25.847115+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:29:58.803364+00:00 | Debian Oval Importer | Affected by | VCID-h9pz-jgxg-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:30:58.708001+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:46:53.958068+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T07:50:57.630156+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T07:48:53.370228+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T07:18:21.936056+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:22:48.314951+00:00 | Debian Oval Importer | Affected by | VCID-z8nu-tk5t-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:03:00.183163+00:00 | Debian Oval Importer | Affected by | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T04:37:30.488916+00:00 | Debian Oval Importer | Affected by | VCID-5qxt-rvzs-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:50:33.133650+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:43:43.443177+00:00 | Debian Oval Importer | Affected by | VCID-h9pz-jgxg-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:04:42.299245+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.0.0 |
| 2025-04-08T03:01:24.014149+00:00 | Debian Oval Importer | Affected by | VCID-24pt-1dej-aaak | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.0.0 |
| 2025-04-08T02:39:32.525069+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.0.0 |
| 2025-04-08T02:34:34.379410+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.0.0 |
| 2025-04-08T02:09:33.536079+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.0.0 |
| 2025-04-07T16:43:16.913084+00:00 | Debian Oval Importer | Affected by | VCID-5qxt-rvzs-aaan | None | 36.0.0 |
| 2025-04-07T16:03:07.289031+00:00 | Debian Oval Importer | Affected by | VCID-1n2s-g3w5-aaak | None | 36.0.0 |
| 2025-04-07T16:01:21.453481+00:00 | Debian Oval Importer | Affected by | VCID-z8nu-tk5t-aaag | None | 36.0.0 |
| 2025-04-07T14:54:49.008831+00:00 | Debian Oval Importer | Affected by | VCID-k1vq-z733-aaak | None | 36.0.0 |
| 2025-04-07T13:04:29.379664+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | None | 36.0.0 |
| 2025-04-07T13:01:51.678973+00:00 | Debian Oval Importer | Affected by | VCID-h9pz-jgxg-aaak | None | 36.0.0 |
| 2025-04-07T12:20:41.228759+00:00 | Debian Oval Importer | Affected by | VCID-24pt-1dej-aaak | None | 36.0.0 |
| 2025-04-07T12:18:36.854163+00:00 | Debian Oval Importer | Affected by | VCID-125v-6567-aaam | None | 36.0.0 |
| 2024-11-28T18:38:56.818800+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-14T04:04:58.014277+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-21T05:49:35.069328+00:00 | Debian Oval Importer | Fixing | VCID-rru1-3cfp-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |