Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2020-23903 - log back

CVE-2020-23903 edited at 10 Nov 2021 23:29:32

Severity

-	Unknown
+	Low

Remote

-	Unknown
+	Remote

Type

-	Unknown
+	Denial of service

Description

+	A divide by zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.

References

+	https://github.com/xiph/speex/issues/13
+	https://gitlab.xiph.org/xiph/speex/-/merge_requests/1
+	https://gitlab.xiph.org/xiph/speex/-/commit/870ff845b32f314aec0036641ffe18aba4916887

Notes

CVE-2020-23903 created at 10 Nov 2021 23:27:52