VYPR
Unrated severityNVD Advisory· Published Feb 23, 2013· Updated Jun 16, 2026

CVE-2013-0899

CVE-2013-0899

Description

Integer overflow in the padding implementation in the opus_packet_parse_impl function in src/opus_decoder.c in Opus before 1.0.2, as used in Google Chrome before 25.0.1364.97 on Windows and Linux and before 25.0.1364.99 on Mac OS X and other products, allows remote attackers to cause a denial of service (out-of-bounds read) via a long packet.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • Google/Chrome2 versions
    cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*range: <25.0.1364.97
    • (no CPE)range: <25.0.1364.97 and <25.0.1364.99 on Mac
  • cpe:2.3:a:opus-codec:opus:*:*:*:*:*:*:*:*
    Range: <1.0.2
  • OpenSUSE/openSUSE2 versions
    cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*
    • cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
  • Discordjs/Opusllm-fuzzy
    Range: <1.0.2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.