CVE-2008-2009

NONECVSS 0.0

0.0

Xiph.org libvorbis before 1.0 does not properly check for underpopulated Huffman trees, which allows remote attackers to cause a denial of service (crash) via a crafted OGG file that triggers memory corruption during execution of the _make_decode_tree function.

🔗 References (14)

secalert@redhathttp://secunia.com/advisories/30247
secalert@redhathttp://www.redhat.com/support/errata/RHSA-2008-0271.html
secalert@redhathttp://www.securitytracker.com/id?1020029
secalert@redhathttp://www.ubuntu.com/usn/USN-861-1
secalert@redhathttp://www.vupen.com/english/advisories/2008/1510/references
secalert@redhathttps://bugzilla.redhat.com/show_bug.cgi?id=444443
secalert@redhathttps://exchange.xforce.ibmcloud.com/vulnerabilities/42521
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/30247
af854a3a-2127-422b-91ae-364da2661108http://www.redhat.com/support/errata/RHSA-2008-0271.html
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1020029
af854a3a-2127-422b-91ae-364da2661108http://www.ubuntu.com/usn/USN-861-1
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/1510/references
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=444443
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/42521

Is Your Infrastructure Affected by CVE-2008-2009?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-2009

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-2009?