Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2020-23904HistoryNov 10, 2021 - 10:15 p.m.
CVE-2020-23904
2021-11-1022:15:00
Debian Security Bug Tracker
security-tracker.debian.org
12
speex v1.2
buffer overflow
denial of service
wav file
EPSS
0.001
Percentile
32.1%
DISPUTED A stack buffer overflow in speexenc.c of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. NOTE: the vendor states “I cannot reproduce it” and it “is a demo program.”
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | speex | <= 1.2.0-1 | speex_1.2.0-1_all.deb |
| Debian | 11 | all | speex | <= 1.2~rc1.2-1.1 | speex_1.2~rc1.2-1.1_all.deb |
| Debian | 10 | all | speex | <= 1.2~rc1.2-1 | speex_1.2~rc1.2-1_all.deb |
| Debian | 999 | all | speex | <= 1.2.0-1 | speex_1.2.0-1_all.deb |
| Debian | 9 | all | speex | <= 1.2~rc1.2-1 | speex_1.2~rc1.2-1_all.deb |
Related
redhatcve
redhatcve
CVE-2020-23904
2021-11-17 17:24:34
ubuntucve
ubuntucve
CVE-2020-23904
2021-11-10 00:00:00
cnvd
cnvd
Speex has unspecified vulnerabilities
2021-11-12 00:00:00
prion
prion
Stack overflow
2021-11-10 22:15:00
cvelist
cvelist
CVE-2020-23904
2021-11-10 21:26:13
cve
cve
CVE-2020-23904
2021-11-10 22:15:11
nvd
nvd
CVE-2020-23904
2021-11-10 22:15:11
nessus
nessus
RHEL 8 : speex (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 7 : speex (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 6 : speex (Unpatched Vulnerability)
2024-05-11 00:00:00