AVG-2544 log
| Package | speex |
| Status | Fixed |
| Severity | Low |
| Type | denial of service |
| Affected | 1.2.0-3 |
| Fixed | 1.2.1-1 |
| Current | 1.2.1-2 [extra] |
| Ticket | None |
| Created | Wed Nov 10 23:27:52 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-23903 | Low | Yes | Denial of service | A divide by zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. |
| Notes |
|---|
CVE-2020-23904 i disputed by the developer, not a real issue. |