CVE-2017-11333 log
| Source |
|
| Severity | Low |
| Remote | Yes |
| Type | Denial of service |
| Description | A security issue has been found in libvorbis <= 1.3.5, where a specially crafted WAV file can trigger an invalid memory allocation in the vorbis_analysis_wrote function in lib/block.c, causing a denial of service. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-367 | libvorbis | 1.3.5-1 | 1.3.6-1 | Critical | Fixed |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 16 Mar 2018 | ASA-201803-12 | AVG-367 | libvorbis | Critical | multiple issues |
| References |
|---|
http://seclists.org/fulldisclosure/2017/Jul/82 |