Search for packages
| purl | pkg:deb/debian/libvorbisidec@1.0.2%2Bsvn16259-2 |
| Next non-vulnerable version | 1.2.1+git20180316-3 |
| Latest non-vulnerable version | 1.2.1+git20180316-3 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-12w2-ffkf-7bfv
Aliases: CVE-2008-2009 |
vorbis: insufficient validation of Huffman tree causing memory corruption in _make_decode_tree() |
Affected by 1 other vulnerability. |
|
VCID-55cd-r9yc-nfan
Aliases: CVE-2009-3379 |
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. |
Affected by 1 other vulnerability. |
|
VCID-bxdr-5t7k-rbdn
Aliases: CVE-2018-5147 |
The libtremor library has the same flaw as CVE-2018-5146. This library is used by Firefox in place of libvorbis on Android and ARM platforms.*Update: The 52.7.2 source release accidentally did not include this patch (the Mozilla-produced 52.7.2 binaries are fine). Anyone building 52.7.2 on ARM should use revision 5cd5586a2f48424a9031a3fa4c782954a9df9a52 instead of the released source. |
Affected by 1 other vulnerability. Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
|
VCID-c3vm-d9f5-2kcj
Aliases: CVE-2008-1419 |
Multiple vulnerabilities in libvorbis might lead to the execution of arbitrary code. |
Affected by 1 other vulnerability. |
|
VCID-gajm-zb2s-ukgz
Aliases: CVE-2012-0444 |
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. |
Affected by 1 other vulnerability. |
|
VCID-mddv-hvgp-u3aa
Aliases: CVE-2008-1423 |
Multiple vulnerabilities in libvorbis might lead to the execution of arbitrary code. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-49kj-gbcz-6fd1 | A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. |
CVE-2007-4066
|
| VCID-bv67-87hf-byf5 | A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. |
CVE-2007-3106
|
| VCID-dgfg-2eq3-5ybm | A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. |
CVE-2007-4029
|
| VCID-mekv-71pb-mfdw | A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. |
CVE-2007-4065
|
| VCID-xdfe-jqzv-rbb4 | A processing error in libvorbis might result in the execution of arbitrary code or a Denial of Service. |
CVE-2009-2663
|