VDB
GCVE-110-MAGEIA-2015-94
GCVE-110-MAGEIA-2015-94
Advisory Published
Updated vorbis-tools package fixes security vulnerabilities:
oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of
service (divide-by-zero error and crash) via a WAV file with the number of
channels set to zero (CVE-2014-9638).
Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to
cause a denial of service (crash) via a crafted number of channels in a WAV
file, which triggers an out-of-bounds memory access (CVE-2014-9639).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | vorbis-tools | 0 (affected), 1.4.0-6.2.mga4 (unaffected), 0 (affected), 1.4.0-6.2.mga4 (unaffected) | — |
| Mageia | imagemagick | 0 (affected), 6.8.9.9-4.1.mga5 (unaffected) | — |
Aliases
References
Browse GCVE Records
72,096 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.