CVE-2020-23903 - log back

CVE-2020-23903 edited at 10 Nov 2021 23:29:32
Severity
- Unknown
+ Low
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ A divide by zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.
References
+ https://github.com/xiph/speex/issues/13
+ https://gitlab.xiph.org/xiph/speex/-/merge_requests/1
+ https://gitlab.xiph.org/xiph/speex/-/commit/870ff845b32f314aec0036641ffe18aba4916887
Notes
CVE-2020-23903 created at 10 Nov 2021 23:27:52