CVE-2017-11333 log

Source
Severity Low
Remote Yes
Type Denial of service
Description
A security issue has been found in libvorbis <= 1.3.5, where a specially crafted WAV file can trigger an invalid memory allocation in the vorbis_analysis_wrote function in lib/block.c, causing a denial of service.
Group Package Affected Fixed Severity Status Ticket
AVG-367 libvorbis 1.3.5-1 1.3.6-1 Critical Fixed
Date Advisory Group Package Severity Type
16 Mar 2018 ASA-201803-12 AVG-367 libvorbis Critical multiple issues
References
http://seclists.org/fulldisclosure/2017/Jul/82