CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
Percentile
90.0%
Updated vorbis-tools package fixes security vulnerability: A buffer overread is possible in vorbis-tools in oggenc/audio.c when opening a specially crafted AIFF file (CVE-2015-6749).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 4 | noarch | vorbis-tools | < 1.4.0-6.3 | vorbis-tools-1.4.0-6.3.mga4 |
Mageia | 5 | noarch | vorbis-tools | < 1.4.0-10.1 | vorbis-tools-1.4.0-10.1.mga5 |