Unrated severityNVD Advisory· Published Aug 15, 2019· Updated Aug 4, 2024
CVE-2019-13220
CVE-2019-13220
Description
Use of uninitialized stack variables in the start_decoder function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- stb_vorbis/stb_vorbisdescription
- Range: <=2019-03-04
- osv-coords3 versionspkg:rpm/opensuse/stb&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/stb&distro=openSUSE%20Tumbleweedpkg:rpm/suse/stb&distro=SUSE%20Package%20Hub%2015%20SP6
< 20240910-bp156.2.3.1+ 2 more
- (no CPE)range: < 20240910-bp156.2.3.1
- (no CPE)range: < 2.36.1594640766.b42009b-1.4
- (no CPE)range: < 20240910-bp156.2.3.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.