mumble

• Author: kikadf
• Vulnerable: 1.2.4-1
• Unaffected: 1.2.4-2arcturus1

It was discovered that a malformed Opus voice packet sent to a Mumble client could trigger a NULL pointer dereference or an out-of-bounds array access. A malicious remote attacker could exploit this flaw to mount a denial of service attack against a mumble client by causing the application to crash. It was discovered that a malformed Opus voice packet sent to a Mumble client could trigger a heap-based buffer overflow. A malicious remote attacker could use this flaw to cause a client crash (denial of service) or potentially use it to execute arbitrary code.

CVEs:

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0044
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0045