Lucene search
OracleLinuxELSA-2020-3877HistoryOct 06, 2020 - 12:00 a.m.
audiofile security update
2020-10-0600:00:00
linux.oracle.com
20
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
[1:0.3.6-9]
- Apply security patches. CVE-2018-17095, CVE-2018-13440
- Resolves: rhbz#1600369, rhbz#1601014, rhbz#1637128
[1:0.3.6-8] - Escape macros in %changelog
[1:0.3.6-7] - Merge upstream pull requests #42,#43,#44 from Agostino Sarubbo to fix
security issues. CVE-2017-6827, CVE-2017-6828,
CVE-2017-6829, CVE-2017-6830, CVE-2017-6831,
CVE-2017-6832, CVE-2017-6833, CVE-2017-6834, CVE-2017-6835,
CVE-2017-6836, CVE-2017-6837, CVE-2017-6838, CVE-2017-6839
[1:0.3.6-6] - patch to compile with GCC 6
[1:0.3.6-5] - Merge fix from upstream pull request #25 for CVE-2015-7747.
Test conversion from e.g. 16-bit LE stereo to 8-bit LE mono
no longer causes corruption.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | audiofile | < 0.3.6-9.el7 | audiofile-0.3.6-9.el7.src.rpm |
| oracle linux | 7 | aarch64 | audiofile | < 0.3.6-9.el7 | audiofile-0.3.6-9.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | audiofile-devel | < 0.3.6-9.el7 | audiofile-devel-0.3.6-9.el7.aarch64.rpm |
| oracle linux | 7 | src | audiofile | < 0.3.6-9.el7 | audiofile-0.3.6-9.el7.src.rpm |
| oracle linux | 7 | i686 | audiofile | < 0.3.6-9.el7 | audiofile-0.3.6-9.el7.i686.rpm |
| oracle linux | 7 | x86_64 | audiofile | < 0.3.6-9.el7 | audiofile-0.3.6-9.el7.x86_64.rpm |
| oracle linux | 7 | i686 | audiofile-devel | < 0.3.6-9.el7 | audiofile-devel-0.3.6-9.el7.i686.rpm |
| oracle linux | 7 | x86_64 | audiofile-devel | < 0.3.6-9.el7 | audiofile-devel-0.3.6-9.el7.x86_64.rpm |
Related
nessus
nessus
EulerOS 2.0 SP3 : audiofile (EulerOS-SA-2020-2098)
2020-09-28 00:00:00
SUSE SLED12 / SLES12 Security Update : audiofile (SUSE-SU-2017:0940-1)
2017-04-06 00:00:00
openSUSE Security Update : audiofile (openSUSE-2017-476)
2017-04-18 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for audiofile (EulerOS-SA-2020-2098)
2020-09-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:0940-1)
2021-04-19 00:00:00
Debian Security Advisory DSA 3814-1 (audiofile - security update)
2017-03-22 00:00:00
osv
osv
audiofile - security update
2017-03-22 00:00:00
audiofile - security update
2017-03-23 00:00:00
audiofile vulnerabilities
2023-12-14 16:44:57
archlinux
archlinux
[ASA-201708-9] audiofile: multiple issues
2017-08-14 00:00:00
mageia
mageia
Updated audiofile packages fix security vulnerabilities
2017-05-06 15:17:05
Updated audiofile packages fix security vulnerabilities
2018-11-12 00:09:54
Updated audiofile packages fixes security vulnerability
2015-10-25 17:38:05
debian
debian
[SECURITY] [DSA 3814-1] audiofile security update
2017-03-22 20:13:14
[SECURITY] [DSA 3814-1] audiofile security update
2017-03-22 20:13:31
[SECURITY] [DLA 867-1] audiofile security update
2017-03-23 21:05:45
cloudfoundry
cloudfoundry
USN-3241-1: audiofile vulnerabilities | Cloud Foundry
2017-04-04 00:00:00
USN-3800-1: audiofile vulnerabilities | Cloud Foundry
2018-10-29 00:00:00
USN-6558-1: audiofile vulnerabilities | Cloud Foundry
2024-04-04 00:00:00
ubuntu
ubuntu
audiofile vulnerabilities
2017-03-22 00:00:00
audiofile vulnerabilities
2018-10-24 00:00:00
audiofile vulnerabilities
2023-12-14 00:00:00
ubuntucve
ubuntucve
fedora
fedora
[SECURITY] Fedora 28 Update: audiofile-0.3.6-21.fc28
2018-10-18 04:32:32
[SECURITY] Fedora 27 Update: audiofile-0.3.6-21.fc27
2018-10-18 03:54:38
[SECURITY] Fedora 29 Update: audiofile-0.3.6-21.fc29
2018-10-30 17:44:10
centos
centos
audiofile security update
2020-10-20 17:47:17
amazon
amazon
Medium: audiofile
2020-10-22 17:18:00
redhat
redhat
(RHSA-2020:3877) Moderate: audiofile security update
2020-09-29 07:39:49
cvelist
cvelist
veracode
veracode
Denial Of Service (DoS)
2018-11-09 09:05:30
Denial Of Service (DoS)
2018-07-24 06:59:53
Arbitrary Code Execution
2020-10-01 03:50:20
debiancve
debiancve
securityvulns
securityvulns
[USN-2787-1] audiofile vulnerability
2015-11-02 00:00:00
audiofile memory corruption
2015-11-02 00:00:00
suse
suse
Security update for audiofile (low)
2019-04-23 00:00:00
Security update for audiofile (moderate)
2018-11-10 00:11:29
Security update for audiofile (moderate)
2018-10-27 12:12:53
cve
cve
prion
prion
Buffer overflow
2020-02-19 21:15:00
Null pointer dereference
2018-07-08 16:29:00
Heap overflow
2017-03-15 14:59:00
cbl_mariner
cbl_mariner
CVE-2017-6839 affecting package audiofile 0.3.6-27
2024-05-13 09:07:01
CVE-2017-6827 affecting package audiofile 0.3.6-27
2024-05-13 09:07:01
CVE-2017-6830 affecting package audiofile 0.3.6-27
2024-05-13 09:07:01
redhatcve
redhatcve
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related for ELSA-2020-3877