Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 3 of 3 results


CVE-2020-23904

Medium priority
Ignored

** DISPUTED ** A stack buffer overflow in speexenc.c of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. NOTE: the vendor states "I cannot reproduce it" and it "is a demo program."

1 affected packages

speex

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
speex Ignored Ignored Ignored Ignored
Show less packages

CVE-2020-23903

Medium priority

Some fixes available 5 of 6

A Divide by Zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.

1 affected packages

speex

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
speex Fixed Fixed Fixed Fixed
Show less packages

CVE-2008-1686

Medium priority

Some fixes available 32 of 47

Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows...

8 affected packages

gst-plugins-good0.10, libfishsound, speex, sweep, vlc...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gst-plugins-good0.10
libfishsound
speex
sweep
vlc
vorbis-tools
xine-lib
xmms-speex
Show all 8 packages Show less packages