CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21723
https://notcve.org/view.php?id=CVE-2020-21723
A Segmentation Fault issue discovered StreamSerializer::extractStreams function in streamSerializer.cpp in oggvideotools 0.9.1 allows remote attackers to cause a denial of service (crash) via opening of crafted ogg file. • https://github.com/xiaoxiongwang/security/tree/master/oggvideotools#segv-occurs-in-function-streamserializerextractstreams-in-streamserializercpp https://sourceforge.net/p/oggvideotools/bugs/10 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21724
https://notcve.org/view.php?id=CVE-2020-21724
Buffer Overflow vulnerability in ExtractorInformation function in streamExtractor.cpp in oggvideotools 0.9.1 allows remaote attackers to run arbitrary code via opening of crafted ogg file. • https://github.com/xiaoxiongwang/security/tree/master/oggvideotools#segv-and-heap-overflow-detected-in-line-17-of-streamextractorcpp https://sourceforge.net/p/oggvideotools/bugs/9 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21722
https://notcve.org/view.php?id=CVE-2020-21722
Buffer Overflow vulnerability in oggvideotools 0.9.1 allows remote attackers to run arbitrary code via opening of crafted ogg file. • https://github.com/xiaoxiongwang/security/tree/master/oggvideotools#segv-and-heap-use-after-free-detected-in-line-17-of-streamextractorcpp https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5E3JKOO7D6Y2SW2TQB5JDVG7I4Y3UFGW https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LO6NXK73PNR4KAAHLXAGPWJAPP772IOD https://sourceforge.net/p/oggvideotools/bugs/11 • CWE-416: Use After Free •