Computer Security
[EN] securityvulns.ru no-pyccku


libvorbis library buffer overflow
Published:22.02.2012
Source:
SecurityVulns ID:12215
Type:library
Threat Level:
6/10
Description:Heap buffer overflow on ogg files parsing.
Affected:LIBVORBIS : libvorbis 1.3
CVE:CVE-2012-0444 (Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Ogg Vorbis file.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2412-1] libvorbis security update (22.02.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod