Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-0899 at MITRE


Integer overflow in the padding implementation in the opus_packet_parse_impl function in src/opus_decoder.c in Opus before 1.0.2, as used in Google Chrome before 25.0.1364.97 on Windows and Linux and before 25.0.1364.99 on Mac OS X and other products, allows remote attackers to cause a denial of service (out-of-bounds read) via a long packet.
CVSS v2 Scores
  National Vulnerability Database
Base Score 4.96
Vector AV:N/AC:L/Au:N/C:N/I:N/A:P
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Partial

SUSE information

SUSE Bugzilla entries: 804986 [RESOLVED / FIXED], 830356 [RESOLVED / INVALID]

SUSE Security Advisories: