Overview

File _patchinfo of Package patchinfo.478

<patchinfo incident="478">
  <issue id="914439" tracker="bnc">VUL-0: CVE-2014-9638: vorbis-tools: Oggenc division by zero issue</issue>
  <issue id="914441" tracker="bnc">VUL-0: CVE-2014-9639: vorbis-tools: Oggenc channel integer overflow</issue>
  <issue id="CVE-2014-9638" tracker="cve" />
  <issue id="CVE-2014-9639" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>tiwai</packager>
  <description>
Vorbis tools was updated to fix division by zero and integer overflows by crafted WAV files (CVE-2014-9638, CVE-2014-9639, bnc#914439, bnc#914441),
that would allow attackers to crash the vorbis tools processes.
</description>
  <summary>Security update for vorbis-tools</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places