CVE-2008-1686

Impact:
Important
Public Date:
2008-04-10
Bugzilla:
441239: CVE-2008-1686 speex, libfishsound: insufficient boundary checks

The MITRE CVE dictionary describes this issue as:

Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows remote attackers to execute arbitrary code via a header structure containing a negative offset, which is used to dereference a function pointer.

Find out more about CVE-2008-1686 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (speex) RHSA-2008:0235 2008-04-16
Red Hat Enterprise Linux 5 (speex) RHSA-2008:0235 2008-04-16
Last Modified

CVE description copyright © 2017, The MITRE Corporation