← back
CVE-2017-14160

CVE-2017-14160

EPSS 4.6%
The bark_noise_hybridmp function in psy.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact via a crafted mp4 file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://openwall.com/lists/oss-security/2017/09/21/2https://lists.debian.org/debian-lts-announce/2019/11/msg00031.htmlhttps://lists.debian.org/debian-lts-announce/2021/11/msg00023.htmlhttps://security.gentoo.org/glsa/202003-36http://www.securityfocus.com/bid/101045