DISPUTED A stack buffer overflow in speexenc.c of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. NOTE: the vendor states “I cannot reproduce it” and it “is a demo program.”
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | speex | <= 1.2.0-1 | speex_1.2.0-1_all.deb |
Debian | 11 | all | speex | <= 1.2~rc1.2-1.1 | speex_1.2~rc1.2-1.1_all.deb |
Debian | 10 | all | speex | <= 1.2~rc1.2-1 | speex_1.2~rc1.2-1_all.deb |
Debian | 999 | all | speex | <= 1.2.0-1 | speex_1.2.0-1_all.deb |
Debian | 9 | all | speex | <= 1.2~rc1.2-1 | speex_1.2~rc1.2-1_all.deb |