Unrated severityNVD Advisory· Published Jan 23, 2015· Updated Jun 17, 2026
CVE-2014-9640
CVE-2014-9640
Description
oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted raw file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:xiph:vorbis-tools:1.4.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:xiph:vorbis-tools:1.4.0:*:*:*:*:*:*:*
- (no CPE)range: =1.4.0
- osv-coords4 versionspkg:rpm/opensuse/vorbis-tools&distro=openSUSE%20Tumbleweedpkg:rpm/suse/vorbis-tools&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/vorbis-tools&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/vorbis-tools&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012
< 1.4.0-22.6+ 3 more
- (no CPE)range: < 1.4.0-22.6
- (no CPE)range: < 1.4.0-19.1
- (no CPE)range: < 1.4.0-19.1
- (no CPE)range: < 1.4.0-19.1
Patches
Vulnerability mechanics
References
8- advisories.mageia.org/MGASA-2015-0051.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2015-January/148852.htmlnvd
- lists.opensuse.org/opensuse-updates/2015-02/msg00032.htmlnvd
- www.mandriva.com/security/advisoriesnvd
- www.openwall.com/lists/oss-security/2015/01/21/6nvd
- www.openwall.com/lists/oss-security/2015/01/22/9nvd
- trac.xiph.org/changeset/19117nvd
- trac.xiph.org/ticket/2009nvd
News mentions
0No linked articles in our index yet.