FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
4200d5f5-b985-11ea-b08a-f8b156b6dcc8	libvorbis -- two vulnerabilities Two vulnerabilities were fixed in the upstream repository: The bark_noise_hybridmp function allows remote attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact via a crafted file. mapping0_forward does not validate the number of channels, which allows remote attackers to cause a denial of service (heap-based buffer overflow or over-read) or possibly have unspecified other impact via a crafted file. Discovery 2017-09-21 Entry 2020-06-28 libvorbis < 1.3.6_1,3 https://www.openwall.com/lists/oss-security/2017/09/21/2 CVE-2017-14160 https://gitlab.xiph.org/xiph/vorbis/-/issues/2335 CVE-2018-10392

VuXML ID

Description

4200d5f5-b985-11ea-b08a-f8b156b6dcc8

libvorbis -- two vulnerabilities

Two vulnerabilities were fixed in the upstream repository:

The bark_noise_hybridmp function allows remote attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact via a crafted file.
mapping0_forward does not validate the number of channels, which allows remote attackers to cause a denial of service (heap-based buffer overflow or over-read) or possibly have unspecified other impact via a crafted file.

Discovery 2017-09-21
Entry 2020-06-28
libvorbis

< 1.3.6_1,3

https://www.openwall.com/lists/oss-security/2017/09/21/2
CVE-2017-14160
https://gitlab.xiph.org/xiph/vorbis/-/issues/2335
CVE-2018-10392