VulnerableCode Package Details - pkg:deb/debian/libvorbisidec@1.0.2%2Bsvn14261-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/libvorbisidec@1.0.2%2Bsvn14261-1

Essentials
History (32)

purl	pkg:deb/debian/libvorbisidec@1.0.2%2Bsvn14261-1

Next non-vulnerable version	1.2.1+git20180316-3
Latest non-vulnerable version	1.2.1+git20180316-3
Risk	4.5

Vulnerabilities affecting this package (11)

Vulnerability	Summary	Fixed by
VCID-12w2-ffkf-7bfv Aliases: CVE-2008-2009	vorbis: insufficient validation of Huffman tree causing memory corruption in _make_decode_tree()	1.0.2+svn18153-0.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-49kj-gbcz-6fd1 Aliases: CVE-2007-4066	A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis.	1.0.2+svn16259-2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-55cd-r9yc-nfan Aliases: CVE-2009-3379	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	1.0.2+svn18153-0.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-bv67-87hf-byf5 Aliases: CVE-2007-3106	A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis.	1.0.2+svn16259-2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-bxdr-5t7k-rbdn Aliases: CVE-2018-5147	The libtremor library has the same flaw as CVE-2018-5146. This library is used by Firefox in place of libvorbis on Android and ARM platforms.*Update: The 52.7.2 source release accidentally did not include this patch (the Mozilla-produced 52.7.2 binaries are fine). Anyone building 52.7.2 on ARM should use revision 5cd5586a2f48424a9031a3fa4c782954a9df9a52 instead of the released source.	1.0.2+svn18153-1~deb8u2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.0.2+svn18153-1+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 1.2.1+git20180316-3 Affected by 0 other vulnerabilities.
VCID-c3vm-d9f5-2kcj Aliases: CVE-2008-1419	Multiple vulnerabilities in libvorbis might lead to the execution of arbitrary code.	1.0.2+svn18153-0.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-dgfg-2eq3-5ybm Aliases: CVE-2007-4029	A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis.	1.0.2+svn16259-2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-gajm-zb2s-ukgz Aliases: CVE-2012-0444	Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.	1.0.2+svn18153-0.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-mddv-hvgp-u3aa Aliases: CVE-2008-1423	Multiple vulnerabilities in libvorbis might lead to the execution of arbitrary code.	1.0.2+svn18153-0.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-mekv-71pb-mfdw Aliases: CVE-2007-4065	A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis.	1.0.2+svn16259-2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-xdfe-jqzv-rbb4 Aliases: CVE-2009-2663	A processing error in libvorbis might result in the execution of arbitrary code or a Denial of Service.	1.0.2+svn16259-2 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T16:24:52.527392+00:00	Debian Oval Importer	Affected by	VCID-mekv-71pb-mfdw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:01:52.388118+00:00	Debian Oval Importer	Affected by	VCID-dgfg-2eq3-5ybm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:34:13.160928+00:00	Debian Oval Importer	Affected by	VCID-bv67-87hf-byf5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:32:32.092161+00:00	Debian Oval Importer	Affected by	VCID-55cd-r9yc-nfan	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T14:34:09.364929+00:00	Debian Oval Importer	Affected by	VCID-bxdr-5t7k-rbdn	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-15T14:00:46.499441+00:00	Debian Oval Importer	Affected by	VCID-bxdr-5t7k-rbdn	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-11T23:53:30.430825+00:00	Debian Oval Importer	Affected by	VCID-xdfe-jqzv-rbb4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:45:09.154083+00:00	Debian Oval Importer	Affected by	VCID-mddv-hvgp-u3aa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:13:03.815208+00:00	Debian Oval Importer	Affected by	VCID-gajm-zb2s-ukgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:27:13.379514+00:00	Debian Oval Importer	Affected by	VCID-bxdr-5t7k-rbdn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:26:54.739136+00:00	Debian Oval Importer	Affected by	VCID-c3vm-d9f5-2kcj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:56:31.690676+00:00	Debian Oval Importer	Affected by	VCID-12w2-ffkf-7bfv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:54:21.978378+00:00	Debian Oval Importer	Affected by	VCID-49kj-gbcz-6fd1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:12:06.827230+00:00	Debian Oval Importer	Affected by	VCID-mekv-71pb-mfdw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:49:26.254722+00:00	Debian Oval Importer	Affected by	VCID-dgfg-2eq3-5ybm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:22:11.296406+00:00	Debian Oval Importer	Affected by	VCID-bv67-87hf-byf5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:20:31.834851+00:00	Debian Oval Importer	Affected by	VCID-55cd-r9yc-nfan	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:22:26.795093+00:00	Debian Oval Importer	Affected by	VCID-bxdr-5t7k-rbdn	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-11T13:49:23.079580+00:00	Debian Oval Importer	Affected by	VCID-bxdr-5t7k-rbdn	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-08T23:25:24.742369+00:00	Debian Oval Importer	Affected by	VCID-xdfe-jqzv-rbb4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:17:27.548041+00:00	Debian Oval Importer	Affected by	VCID-mddv-hvgp-u3aa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:54:13.615830+00:00	Debian Oval Importer	Affected by	VCID-gajm-zb2s-ukgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:10:45.600162+00:00	Debian Oval Importer	Affected by	VCID-bxdr-5t7k-rbdn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:10:27.439185+00:00	Debian Oval Importer	Affected by	VCID-c3vm-d9f5-2kcj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:41:08.501403+00:00	Debian Oval Importer	Affected by	VCID-12w2-ffkf-7bfv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:39:04.154477+00:00	Debian Oval Importer	Affected by	VCID-49kj-gbcz-6fd1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:04:31.758853+00:00	Debian Oval Importer	Affected by	VCID-mekv-71pb-mfdw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:42:53.428364+00:00	Debian Oval Importer	Affected by	VCID-dgfg-2eq3-5ybm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:16:49.650266+00:00	Debian Oval Importer	Affected by	VCID-bv67-87hf-byf5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:15:13.657025+00:00	Debian Oval Importer	Affected by	VCID-55cd-r9yc-nfan	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T22:56:01.259416+00:00	Debian Oval Importer	Affected by	VCID-bxdr-5t7k-rbdn	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0
2026-04-07T22:24:40.827980+00:00	Debian Oval Importer	Affected by	VCID-bxdr-5t7k-rbdn	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0