[USN-1370-1] libvorbis vulnerability
Severity
High
CVEs
1
libvorbis could be made to crash or run programs as your login if it opened a specially crafted file.
It was discovered that libvorbis did not correctly handle certain malformed
ogg files. If a user were tricked into opening a specially crafted ogg file
with an application that uses libvorbis, an attacker could cause a denial
of service or possibly execute arbitrary code with the user's privileges.
- ID
- USN-1370-1
- Severity
- high
- Severity from
- CVE-2012-0444
- URL
- https://ubuntu.com/security/notices/USN-1370-1
- Published
-
2012-02-20T18:07:41
(12 years ago) - Modified
-
2012-02-20T18:07:41
(12 years ago) - Other Advisories
ALAS-2012-47
ELSA-2012-0079
FEDORA-2012-1652
FREEBSD:40497E81-FEE3-4E54-9D5F-175A5C633B73
GLSA-201301-01
RHSA-2012:0079| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |