Total vulnerabilities in the database
Xiph.org libvorbis 1.2.0 and earlier does not properly handle a zero value for codebook.dim, which allows remote attackers to cause a denial of service (crash or infinite loop) or trigger an integer overflow.
| Software | From | Fixed in |
|---|---|---|
| xiph.org / libvorbis | 1.0.0 | 1.0.0.x |
| xiph.org / libvorbis | 1.0.1 | 1.0.1.x |
| xiph.org / libvorbis | 1.1.0 | 1.1.0.x |
| xiph.org / libvorbis | 1.1.1 | 1.1.1.x |
| xiph.org / libvorbis | 1.2.0 | 1.2.0.x |
| xiph.org / libvorbis | 1.12 | 1.12.x |