CVE-2008-1686

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2008-1686

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2008-1686.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2008-1686

Downstream

DEBIAN-CVE-2008-1686

DSA-1584-1

DSA-1585-1

DSA-1586-1

DTSA-127-1

DTSA-128-1

DTSA-129-1

RHSA-2008:0235

openSUSE-SU-2024:10610-1

openSUSE-SU-2024:10829-1

openSUSE-SU-2024:11503-1

Related

Withdrawn

2026-01-27T04:08:38.970556Z

Published

2008-04-08T18:05:00Z

Modified

2026-01-27T04:08:38.970556Z

Summary

[none]

Details

Array index vulnerability in Speex 1.1.12 and earlier, as used in libfishsound 0.9.0 and earlier, including Illiminable DirectShow Filters and Annodex Plugins for Firefox, xine-lib before 1.1.12, and many other products, allows remote attackers to execute arbitrary code via a header structure containing a negative offset, which is used to dereference a function pointer.

References

Affected packages