Integer overflow in the padding implementation in the opus_packet_parse_impl function in src/opus_decoder.c in Opus before 1.0.2, as used in Google Chrome before 25.0.1364.97 on Windows and Linux and before 25.0.1364.99 on Mac OS X and other products, allows remote attackers to cause a denial of service (out-of-bounds read) via a long packet.

Metrics

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Apple
  • Ipados
  • Iphone Os
  • Mac Os X
  • Macos
Google
  • Chrome
Linux
  • Linux Kernel
Microsoft
  • Windows
Opensuse
  • Opensuse
Opus-codec
  • Opus

Configuration 1 [-]

AND
cpe:2.3:a:opus-codec:opus:*:*:*:*:*:*:*:*
cpe:2.3:a:google:chrome:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
OR cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
OR cpe:2.3:o:apple:ipados:-:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

Configuration 4 [-]

OR cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*

No data.

References
Link Providers
http://googlechromereleases.blogspot.com/2013/02/stable-channel-update_21.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-updates/2013-03/msg00045.html cve-icon cve-icon
http://opus-codec.org/downloads/ cve-icon cve-icon
https://code.google.com/p/chromium/issues/detail?id=160480 cve-icon cve-icon
https://codereview.chromium.org/11575026 cve-icon cve-icon
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16027 cve-icon cve-icon
https://src.chromium.org/viewvc/chrome/trunk/deps/third_party/opus/src/opus_decoder.c?r1=173498&r2=173497&pathrev=173498 cve-icon cve-icon
https://src.chromium.org/viewvc/chrome?view=rev&revision=173498 cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2013-02-23T21:00:00

Updated: 2024-08-06T14:41:48.290Z

Reserved: 2013-01-07T00:00:00

Link: CVE-2013-0899

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2013-02-23T21:55:02.000

Modified: 2024-11-21T01:48:25.000

Link: CVE-2013-0899

cve-icon Redhat

No data.