Search CVE reports
1 – 3 of 3 results
CVE-2020-23904
Medium priority** DISPUTED ** A stack buffer overflow in speexenc.c of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. NOTE: the vendor states "I cannot reproduce it" and it "is a demo program."
1 affected packages
speex
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| speex | — | Ignored | Ignored | Ignored | Ignored |
CVE-2020-23903
Medium prioritySome fixes available 5 of 6
A Divide by Zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.
1 affected packages
speex
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| speex | — | Fixed | Fixed | Fixed | Fixed |
CVE-2008-1686
Medium prioritySome fixes available 32 of 47
Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows...
8 affected packages
gst-plugins-good0.10, libfishsound, speex, sweep, vlc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| gst-plugins-good0.10 | — | — | — | — | — |
| libfishsound | — | — | — | — | — |
| speex | — | — | — | — | — |
| sweep | — | — | — | — | — |
| vlc | — | — | — | — | — |
| vorbis-tools | — | — | — | — | — |
| xine-lib | — | — | — | — | — |
| xmms-speex | — | — | — | — | — |