Lucene search
GoogleOSV:ALSA-2019:3703HistoryNov 05, 2019 - 8:52 p.m.
Low: libvorbis security update
2019-11-0520:52:55
Google
osv.dev
9
The libvorbis package contains runtime libraries for use in programs that support Ogg Vorbis, a fully open, non-proprietary, patent- and royalty-free, general-purpose compressed format for audio and music at fixed and variable bitrates.
Security Fix(es):
-
libvorbis: heap buffer overflow in mapping0_forward function (CVE-2018-10392)
-
libvorbis: stack buffer overflow in bark_noise_hybridmp function (CVE-2018-10393)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
Related
osv
osv
Low: libvorbis security update
2019-11-05 20:52:55
libvorbis - security update
2021-11-27 00:00:00
libvorbis vulnerabilities
2022-05-12 15:44:18
nessus
nessus
Rocky Linux 8 : libvorbis (RLSA-2019:3703)
2023-11-06 00:00:00
RHEL 8 : libvorbis (RHSA-2019:3703)
2019-11-06 00:00:00
CentOS 8 : libvorbis (CESA-2019:3703)
2021-01-29 00:00:00
redhat
redhat
(RHSA-2019:3703) Low: libvorbis security update
2019-11-05 20:52:55
openvas
openvas
Huawei EulerOS: Security Advisory for libvorbis (EulerOS-SA-2020-1926)
2020-09-04 00:00:00
Huawei EulerOS: Security Advisory for libvorbis (EulerOS-SA-2020-2363)
2020-11-04 00:00:00
Huawei EulerOS: Security Advisory for libvorbis (EulerOS-SA-2020-1972)
2020-09-08 00:00:00
rocky
rocky
libvorbis security update
2019-11-05 20:52:55
almalinux
almalinux
Low: libvorbis security update
2019-11-05 20:52:55
gentoo
gentoo
libvorbis: Multiple vulnerabilities
2020-03-16 00:00:00
oraclelinux
oraclelinux
libvorbis security update
2019-11-14 00:00:00
ubuntu
ubuntu
Vorbis vulnerabilities
2022-05-12 00:00:00
mageia
mageia
Updated libvorbis packages fix security vulnerabilities
2018-06-25 01:02:29
debian
debian
[SECURITY] [DLA 2013-1] libvorbis security update
2019-11-27 21:39:56
[SECURITY] [DLA 2828-1] libvorbis security update
2021-11-27 19:38:58
suse
suse
Security update for libvorbis (moderate)
2018-07-14 00:07:51
Security update for libvorbis (moderate)
2018-06-09 15:08:21
Security update for libvorbis (moderate)
2018-05-18 18:07:41
cve
cve
CVE-2018-10392
2018-04-26 05:29:00
CVE-2018-10393
2018-04-26 05:29:00
prion
prion
Heap overflow
2018-04-26 05:29:00
Stack overflow
2018-04-26 05:29:00
cvelist
cvelist
CVE-2018-10392
2018-04-26 05:00:00
CVE-2018-10393
2018-04-26 05:00:00
cbl_mariner
cbl_mariner
CVE-2018-10393 affecting package libvorbis for versions less than 1.3.7-1
2023-10-11 02:36:02
CVE-2018-10392 affecting package libvorbis for versions less than 1.3.7-1
2023-10-11 02:36:02
veracode
veracode
Buffer Overread
2018-05-03 05:03:04
nvd
nvd
CVE-2018-10393
2018-04-26 05:29:00
CVE-2018-10392
2018-04-26 05:29:00
debiancve
debiancve
CVE-2018-10392
2018-04-26 05:29:00
CVE-2018-10393
2018-04-26 05:29:00
alpinelinux
alpinelinux
CVE-2018-10393
2018-04-26 05:29:00
CVE-2018-10392
2018-04-26 05:29:00
redhatcve
redhatcve
CVE-2018-10393
2018-05-02 19:49:25
CVE-2018-10392
2018-05-02 19:49:14
ubuntucve
ubuntucve
fedora
fedora
[SECURITY] Fedora 28 Update: libvorbis-1.3.6-3.fc28
2018-08-03 20:51:09
[SECURITY] Fedora 29 Update: mingw-libvorbis-1.3.6-2.fc29
2019-01-22 17:42:50
slackware
slackware
[slackware-security] libvorbis
2020-07-04 19:17:27
freebsd
freebsd
libvorbis -- two vulnerabilities
2017-09-21 00:00:00