Total vulnerabilities in the database
Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows remote attackers to execute arbitrary code via a header structure containing a negative offset, which is used to dereference a function pointer.
| Software | From | Fixed in |
|---|---|---|
| xine / xine-lib | 1.1.10 | 1.1.10.x |
| xine / xine-lib | 1.1.10.1 | 1.1.10.1.x |
| xine / xine-lib | 1.1.11 | 1.1.11.x |
| xine / xine-lib | 1.1.0 | 1.1.0.x |
| xine / xine-lib | 0.9.8 | 0.9.8.x |
| xine / xine-lib | 1.0.3a | 1.0.3a.x |
| xine / xine-lib | 1.0.1 | 1.0.1.x |
| xine / xine-lib | 1.0.2 | 1.0.2.x |
| xine / xine-lib | 0.99 | 0.99.x |
| xine / xine-lib | 0.9.13 | 0.9.13.x |
| xine / xine-lib | - | 1.1.11.1.x |
| xine / xine-lib | 1.0 | 1.0.x |
| xine / xine-lib | 1.1.1 | 1.1.1.x |
| xiph / speex | - | 1.1.12.x |
| xiph / speex | 1.0.2 | 1.0.2.x |
| xiph / speex | 1.0.3 | 1.0.3.x |
| xiph / speex | 1.0.4 | 1.0.4.x |
| xiph / speex | 1.0.5 | 1.0.5.x |
| xiph / speex | 1.1.1 | 1.1.1.x |
| xiph / speex | 1.1.2 | 1.1.2.x |
| xiph / speex | 1.1.3 | 1.1.3.x |
| xiph / speex | 1.1.4 | 1.1.4.x |
| xiph / speex | 1.1.5 | 1.1.5.x |
| xiph / speex | 1.1.6 | 1.1.6.x |
| xiph / speex | 1.1.7 | 1.1.7.x |
| xiph / speex | 1.1.8 | 1.1.8.x |
| xiph / speex | 1.1.9 | 1.1.9.x |
| xiph / speex | 1.1.10 | 1.1.10.x |
| xiph / speex | 1.1.11 | 1.1.11.x |
| xiph / speex | 1.1.11.1 | 1.1.11.1.x |
| xiph / libfishsound | - | 0.9.0.x |
| xiph / libfishsound | 0.5.41 | 0.5.41.x |
| xiph / libfishsound | 0.5.42 | 0.5.42.x |
| xiph / libfishsound | 0.6.0 | 0.6.0.x |
| xiph / libfishsound | 0.6.1 | 0.6.1.x |
| xiph / libfishsound | 0.6.2 | 0.6.2.x |
| xiph / libfishsound | 0.6.3 | 0.6.3.x |
| xiph / libfishsound | 0.7.0 | 0.7.0.x |
| xiph / libfishsound | 0.8.0 | 0.8.0.x |
| xiph / libfishsound | 0.8.1 | 0.8.1.x |