A Divide by Zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. Reference: https://github.com/xiph/speex/issues/13
Created mingw-speex tracking bugs for this issue: Affects: fedora-all [bug 2024251] Created speex tracking bugs for this issue: Affects: fedora-all [bug 2024252]
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2022:7979 https://access.redhat.com/errata/RHSA-2022:7979
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-23903