vulnerability

Debian: CVE-2019-13220: libstb -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:M/Au:N/C:P/I:N/A:P)	Aug 15, 2019	Feb 2, 2023	Aug 15, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:P)

Published

Aug 15, 2019

Added

Feb 2, 2023

Modified

Aug 15, 2025

Description

Use of uninitialized stack variables in the start_decoder function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file.

Solution

debian-upgrade-libstb

References

CVE-2019-13220
https://attackerkb.com/topics/CVE-2019-13220
CWE-908
DEBIAN-DLA-3305-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today