CVE-2009-3378 — Liboggplay vulnerability

4 documents4 sources

Severity

9.3CRITICALNVD

EPSS

3.3%

top 12.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Liboggplay Mozilla Firefox

Timeline

PublishedOct 29

Latest updateMay 2

Description

The oggplay_data_handle_theora_frame function in media/liboggplay/src/liboggplay/oggplay_data.c in liboggplay, as used in Mozilla Firefox 3.5.x before 3.5.4, attempts to reuse an earlier frame data structure upon encountering a decoding error for the first frame, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly execute arbitrary code via a crafted .ogg video file.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages2 packages

▶debiandebian/liboggplay< liboggplay 0.2.1~git20091120-1 (bookworm)

▶NVDmozilla/firefox3.5.1, 3.5.2, 3.5.3+2

Patches

Patch: www.mozilla.org ↗Patch: www.mozilla.org ↗

🔴Vulnerability Details

GHSA

GHSA-vcwp-h637-px5r: The oggplay_data_handle_theora_frame function in media/liboggplay/src/liboggplay/oggplay_data↗2022-05-02

▶

OSV

CVE-2009-3378: The oggplay_data_handle_theora_frame function in media/liboggplay/src/liboggplay/oggplay_data↗2009-10-29

▶

📋Vendor Advisories

Debian

CVE-2009-3378: liboggplay - The oggplay_data_handle_theora_frame function in media/liboggplay/src/liboggplay...↗2009

▶