mapping0_forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a denial of service (heap-based buffer overflow or over-read) or possibly have unspecified other impact via a crafted file.
References
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2018-04-26T05:00:00

Updated: 2021-11-27T21:06:09

Reserved: 2018-04-25T00:00:00


Link: CVE-2018-10392

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2018-04-26T05:29:00.343

Modified: 2021-11-30T22:13:19.347


Link: CVE-2018-10392

JSON object: View

cve-icon Redhat Information

No data.