Sean Barrett stb_vorbis version 1.12 and earlier contains a Buffer Overflow vulnerability in All vorbis decoding paths. that can result in memory corruption, denial of service, comprised execution of host program. This attack appear to be exploitable via Victim must open a specially crafted Ogg Vorbis file. This vulnerability appears to have been fixed in 1.13.
References
Link | Resource |
---|---|
https://github.com/nothings/stb/commit/244d83bc3d859293f55812d48b3db168e581f6ab | Patch |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-02-09T23:00:00
Updated: 2018-02-09T22:57:01
Reserved: 2018-02-05T00:00:00
Link: CVE-2018-1000050
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-02-09T23:29:01.743
Modified: 2018-03-08T15:27:25.077
Link: CVE-2018-1000050
JSON object: View
Redhat Information
No data.
CWE