{"id":"CVE-2023-43361","details":"Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files.","modified":"2026-05-18T05:56:44.743658342Z","published":"2023-10-02T00:00:00Z","related":["ALSA-2024:3095","SUSE-SU-2023:4218-1","SUSE-SU-2023:4251-1","openSUSE-SU-2024:13349-1"],"database_specific":{"cna_assigner":"mitre","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/43xxx/CVE-2023-43361.json"},"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GJKTWQXOZDMCXVEFCQZVH3F3FQYMNYLI/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T47YXGRUCUKN7WEOHUEIUNJ2KZ2C2IDN/"},{"type":"WEB","url":"https://xiph.org/vorbis/"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/43xxx/CVE-2023-43361.json"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GJKTWQXOZDMCXVEFCQZVH3F3FQYMNYLI/"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T47YXGRUCUKN7WEOHUEIUNJ2KZ2C2IDN/"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-43361"},{"type":"REPORT","url":"https://github.com/xiph/vorbis-tools/issues/41"},{"type":"PACKAGE","url":"https://github.com/xiph/vorbis"},{"type":"PACKAGE","url":"https://github.com/xiph/vorbis-tools"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/xiph/vorbis-tools","events":[{"introduced":"0"},{"last_affected":"71687237c07cd9d5564c73990d0de45520c5bec1"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"last_affected":"1.4.2"}],"cpe":"cpe:2.3:a:xiph:vorbis-tools:1.4.2:*:*:*:*:*:*:*","source":"CPE_FIELD"}}],"versions":["v1.4.2","v1.4.1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-43361.json"}}],"schema_version":"1.7.5"}