Lucene search
GoogleOSV:DSA-1972-1HistoryJan 17, 2010 - 12:00 a.m.
audiofile - buffer overflow
2010-01-1700:00:00
Google
osv.dev
22
EPSS
0.006
Percentile
79.1%
Max Kellermann discovered a heap-based buffer overflow in the handling
of ADPCM WAV files in libaudiofile. This flaw could result in a denial
of service (application crash) or possibly execution of arbitrary code
via a crafted WAV file.
The old stable distribution (etch), this problem will be fixed in
version 0.2.6-6+etch1.
The packages for the oldstable distribution are not included in this
advisory. An update will be released soon.
For the stable distribution (lenny), this problem has been fixed in
version 0.2.6-7+lenny1.
For the testing distribution (squeeze) and the unstable distribution
(sid), this problem has been fixed in version 0.2.6-7.1.
We recommend that you upgrade your audiofile packages.
References
Related
openvas
openvas
Ubuntu Update for audiofile vulnerability USN-912-1
2010-03-22 00:00:00
Ubuntu: Security Advisory (USN-912-1)
2010-03-22 00:00:00
Debian: Security Advisory (DSA-1972-1)
2023-03-08 00:00:00
nessus
nessus
SuSE 10 Security Update : audiofile (ZYPP Patch Number 5948)
2009-09-24 00:00:00
openSUSE Security Update : audiofile (audiofile-457)
2009-07-21 00:00:00
openSUSE 10 Security Update : audiofile (audiofile-5950)
2009-01-28 00:00:00
prion
prion
Heap overflow
2009-01-02 19:30:00
nvd
nvd
CVE-2008-5824
2009-01-02 19:30:01
exploitdb
exploitdb
cvelist
cvelist
CVE-2008-5824
2009-01-02 19:00:00
cve
cve
CVE-2008-5824
2009-01-02 19:30:01
debian
debian
[SECURITY] [DSA-1972-2] New audiofile packages fix buffer overflow
2010-01-21 16:07:25
[SECURITY] [DSA-1972-1] New audiofile packages fix buffer overflow
2010-01-17 09:36:43
[SECURITY] [DSA-1972-2] New audiofile packages fix buffer overflow
2010-01-21 16:07:25
debiancve
debiancve
CVE-2008-5824
2009-01-02 19:30:01
ubuntu
ubuntu
Audio File Library vulnerability
2010-03-16 00:00:00
ubuntucve
ubuntucve
CVE-2008-5824
2009-01-02 00:00:00