First published: Fri Apr 04 2008(Updated: )
Will Drewry of the Google Security Team reported an issue in OGG Vorbis library, that can cause crash of the application using vorbis library, trigger an infinite loop, or cause an integer overflow leading to possible heap overflow. Problem is caused by codebooks with codebook.dim == 0.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Redhat Enterprise Linux | =2.1 | |
Redhat Enterprise Linux | =2.1 | |
Redhat Enterprise Linux | =2.1 | |
Redhat Enterprise Linux | =4.0 | |
Redhat Enterprise Linux | =5 | |
Redhat Enterprise Linux | =5 | |
Redhat Enterprise Linux | =5.0 | |
Redhat Linux Advanced Workstation | =2.1 | |
Xiph.Org libvorbis | =1.0.0 | |
Xiph.Org libvorbis | =1.0.1 | |
Xiph.Org libvorbis | =1.1.0 | |
Xiph.Org libvorbis | =1.1.1 | |
Xiph.Org libvorbis | =1.2.0 | |
Xiph.Org libvorbis | =1.12 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.