On Fri, May 11, 2018 at 10:20:42PM +0200, Salvatore Bonaccorso wrote:
> Control: retitle -1 libvorbis: CVE-2017-14160 (+ CVE-2018-10392
> CVE-2018-10393)
> Control: tags -1 + fixed-upstream
>
> Hi
>
> This issue (cf. https://gitlab.xiph.org/xiph/vorbis/issues/2330) was
> adressed upstream by
>
Control: retitle -1 libvorbis: CVE-2017-14160 (+ CVE-2018-10392 CVE-2018-10393)
Control: tags -1 + fixed-upstream
Hi
This issue (cf. https://gitlab.xiph.org/xiph/vorbis/issues/2330) was
adressed upstream by
https://gitlab.xiph.org/xiph/vorbis/commit/018ca26dece618457dd13585cad52941193c4a25
.
On Tue, Sep 26, 2017 at 12:24:14AM +0200, Petter Reinholdtsen wrote:
> [Salvatore Bonaccorso]
> > the following vulnerability was published for libvorbis.
>
> Thank you for following up on this. I hope a fix show up from upstream
> for this and other security issues. :)
>
> I was just told on
[Salvatore Bonaccorso]
> the following vulnerability was published for libvorbis.
Thank you for following up on this. I hope a fix show up from upstream
for this and other security issues. :)
I was just told on #xiph that this issue also might affect speex:
rillian: speex may also be
Source: libvorbis
Version: 1.3.5-4
Severity: important
Tags: security upstream
Hi,
the following vulnerability was published for libvorbis.
CVE-2017-14160[0]:
| The bark_noise_hybridmp function in psy.c in Xiph.Org libvorbis 1.3.5
| allows remote attackers to cause a denial of service
5 matches
Mail list logo