Vulnerabilities > Xiph > Speex > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-11-10 CVE-2020-23903 Divide By Zero vulnerability in multiple products
A Divide by Zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.
local
low complexity
xiph fedoraproject CWE-369
5.5
5.5
2021-11-10 CVE-2020-23904 Out-of-bounds Write vulnerability in Xiph Speex 1.2
A stack buffer overflow in speexenc.c of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.
local
low complexity
xiph CWE-787
5.5
5.5