Issues · Xiph.Org / Vorbis · GitLab

divide by zero issue

#2340 · opened Feb 03, 2019 by niugx
- CLOSED
- 3
updated Jun 11, 2020
Remove C++ comments

#2339 · opened Dec 21, 2018 by Henry Bent
- CLOSED
- 1
updated Jan 28, 2019
Four heap buffer overflow(read and write) vuls in function mapping0_forward() of libvorbis-1.3.6, which is caused by lacking of var “channels” check.

#2335 · opened Apr 25, 2018 by Jiangxin
- CLOSED
- 1
- 3
updated Jul 16, 2020
Stack buffer overflow(read) in function bark_noise_hybridmp() of libvorbis-1.3.6, which is caused by lacking of array length check.

#2334 · opened Apr 25, 2018 by Jiangxin
- CLOSED
- 5
updated Jul 06, 2020
Infinite loop in _get_prev_page_serial

#2333 · opened Jan 22, 2018 by Stefan Lednicky
- CLOSED
- 2
updated Jan 28, 2019
CVE-2017-11333 - The vorbis_analysis_wrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (OOM) via a crafted wav file.

#2332 · opened Sep 30, 2017 by Guido Günther
- CLOSED
- 6
updated Mar 17, 2018
CVE-2017-11735 - The vorbis_block_clear function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted ogg file.

#2331 · opened Sep 30, 2017 by Guido Günther
- CLOSED
- 3
updated Oct 09, 2017
(CVE-2017-14633)an out-of-bound array read vul in function mapping0_forward() in libvorbis 1.3.5

#2329 · opened Sep 14, 2017 by Jiangxin
- CLOSED
- 4
updated Dec 11, 2017
(CVE-2017-14632)call oggpack_writeclear() with uninitialized stack var opb in function vorbis_analysis_headerout() when vi->channels<=0 in libvorbis 1.3.5

#2328 · opened Sep 13, 2017 by Jiangxin
- CLOSED
- 5
updated May 09, 2018
vorbisfile free of uninitialized memory if seek fails

#2327 · opened Jun 13, 2017 by Gitlab Bot
- CLOSED
- 4
updated Jan 28, 2019
vorbis git repository missing release markers

#2271 · opened May 29, 2016 by Jacob Lifshay
- CLOSED
- 1
updated Nov 01, 2017
vorbis_comment_add_tag() crash: very large alloca()

#2221 · opened Sep 05, 2015 by i80and
- CLOSED
- 0
updated Nov 01, 2017
_initial_pcmoffset uses error codes from vorbis_packet_blocksize in arithmetics

#2142 · opened Jan 05, 2015 by Martin Steghöfer
- CLOSED
- 0
updated Nov 01, 2017
"Null pointer dereference" [forwarded from Debian #774516]

#2140 · opened Jan 04, 2015 by Martin Steghöfer
- CLOSED
- 0
updated Nov 01, 2017
libvorbis-1.3.4 misdecodes streams with single-symbol codebooks

#2139 · opened Jan 01, 2015 by Andrew Church
- CLOSED
- 0
updated Nov 01, 2017
CHANGES changelog for libvorbis not updated since libvorbis 1.3.3

#2120 · opened Dec 11, 2014 by Tim Small
- CLOSED
- 1
updated Jun 10, 2020
tagcompare() uses toupper() and is sensitive to the current locale

#2079 · opened Nov 07, 2014 by David King
- CLOSED
- 2
updated Feb 02, 2019
Invalid memory access with samplingrate==0

#2078 · opened Nov 06, 2014 by Martin Steghöfer
- CLOSED
- 0
updated Nov 01, 2017
[libvorbis patch] -O20 and -O4 don't exist (emscripten JS cross-compile fix)

#2067 · opened Oct 31, 2014 by Brion Vibber
- CLOSED
- 0
updated Nov 01, 2017
Typos in Vorbis I specification

#2060 · opened Oct 10, 2014 by stefan
- CLOSED
- 0
updated Nov 01, 2017

Prev
1
2
3
4
5
…
13
Next