CVE-2018-10392

high-risk

Published 2018-04-26

mapping0_forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a denial of service (heap-based buffer overflow or over-read) or possibly have unspecified other impact via a crafted file.

Do I need to act?

1.4% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.8/10 High

NETWORK / LOW complexity

Affected Products (11)

Libvorbis

Debian Linux

Enterprise Linux

Enterprise Linux Eus

Enterprise Linux Server Aus

Enterprise Linux Server Tus

Affected Vendors

Debian Redhat Xiph.Org

References (10)

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:3703

Exploit https://gitlab.xiph.org/xiph/vorbis/issues/2335

Mailing List https://lists.debian.org/debian-lts-announce/2019/11/msg00031.html

Mailing List https://lists.debian.org/debian-lts-announce/2021/11/msg00023.html

Third Party Advisory https://security.gentoo.org/glsa/202003-36

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:3703

Exploit https://gitlab.xiph.org/xiph/vorbis/issues/2335

Mailing List https://lists.debian.org/debian-lts-announce/2019/11/msg00031.html

Mailing List https://lists.debian.org/debian-lts-announce/2021/11/msg00023.html

Third Party Advisory https://security.gentoo.org/glsa/202003-36

/ 100

high-risk

Severity 30/34 · Critical

Exploitability 4/34 · Minimal

Exposure 16/34 · Moderate