VYPR

Speex

by Xiph.Org

CVEs (3)

  • CVE-2020-23904MedNov 10, 2021
    risk 0.36cvss 5.5epss 0.01

    A stack buffer overflow in speexenc.c of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. NOTE: the vendor states "I cannot reproduce it" and it "is a demo program.

  • CVE-2020-23903MedNov 10, 2021
    risk 0.36cvss 5.5epss 0.01

    A Divide by Zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.

  • CVE-2008-1686Apr 8, 2008
    risk 0.00cvss epss 0.06

    Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows remote attackers to execute arbitrary code via a…