CVE-2017-6835

The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service divide-by-zero error and crash via a crafted file...

CVE-2017-6827

Heap-based buffer overflow in the MSADPCM::initializeCoefficients function in MSADPCM.cpp in audiofile aka libaudiofile and Audio File Library 0.3.6 allows remote attackers to have unspecified impact via a crafted audio file...

CVE-2017-6836

Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows remote attackers to cause a denial of service crash via a crafted file...

AZL-7171 CVE-2017-6828 affecting package audiofile 0.3.6-27

Heap-based buffer overflow in the readValue function in FileHandle.cpp in audiofile aka libaudiofile and Audio File Library 0.3.6 allows remote attackers to have unspecified impact via a crafted WAV file...

Heap overflow

Heap-based buffer overflow in the readValue function in FileHandle.cpp in audiofile aka libaudiofile and Audio File Library 0.3.6 allows remote attackers to have unspecified impact via a crafted WAV file...

CVE-2017-6827

CVE-2017-6827 is a heap-based buffer overflow in the MSADPCM::initializeCoefficients function of audiofile (libaudiofile) 0.3.6, allowing remote attackers to impact via a crafted audio file. Connected advisories confirm this vulnerability across multiple distributions: Debian DSA-3814 fixed in 0....

CVE-2017-6828

CVE-2017-6828 affects audiofile (libaudiofile) 0.3.6 with a heap-based overflow in readValue(FileHandle.cpp) triggered by a crafted WAV file. The CVE entry notes unspecified impact; related advisories and Debian/MPL/Mageia notes indicate exposure could lead to denial of service or arbitrary code ...

CVE-2017-6828

Heap-based buffer overflow in the readValue function in FileHandle.cpp in audiofile aka libaudiofile and Audio File Library 0.3.6 allows remote attackers to have unspecified impact via a crafted WAV file...

UBUNTU-CVE-2017-6827

Heap-based buffer overflow in the MSADPCM::initializeCoefficients function in MSADPCM.cpp in audiofile aka libaudiofile and Audio File Library 0.3.6 allows remote attackers to have unspecified impact via a crafted audio file...

PT-2017-17357 · Unknown +2 · Audio File Library +2

Name of the Vulnerable Software and Affected Versions: Audio File Library version 0.3.6 Description: The issue is related to a heap-based buffer overflow in the alaw2linear buf function in G711.cpp, which allows remote attackers to cause a denial of service crash via a crafted file...

CVE-2017-6837

WAVE.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via vectors related to a large number of coefficients...

CVE-2017-6838

Integer overflow in sfcommands/sfconvert.c in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...

UBUNTU-CVE-2017-6839

Integer overflow in modules/MSADPCM.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...

CVE-2017-6839

Integer overflow in modules/MSADPCM.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...

PT-2017-17361 · Audiofile +2 · Audio File Library +2

Name of the Vulnerable Software and Affected Versions: Audio File Library aka audiofile versions 0.2.7 through 0.3.6 Description: The issue is related to a heap-based buffer overflow in the ulaw2linear buf function in G711.cpp. This allows remote attackers to cause a denial of service crash via a...

PT-2017-17365 · Unknown +2 · Audio File Library +2

Name of the Vulnerable Software and Affected Versions: Audio File Library version 0.3.6 Description: The issue is related to an integer overflow in the sfcommands/sfconvert.c file, which can be exploited by remote attackers to cause a denial of service, resulting in a crash, by using a crafted...

PT-2017-17362 · Unknown +2 · Audio File Library +2

Name of the Vulnerable Software and Affected Versions: Audio File Library version 0.3.6 Description: The issue allows remote attackers to cause a denial of service, resulting in a divide-by-zero error and crash, via a crafted file. This is due to a problem in the reset1 function in...

PT-2017-17364 · Audiofile +2 · Audio File Library +2

Name of the Vulnerable Software and Affected Versions: Audio File Library aka audiofile version 0.3.6 Description: The issue allows remote attackers to cause a denial of service crash via vectors related to a large number of coefficients. This is related to the WAVE.cpp file in the Audio File...

PT-2017-17363 · Libaudiofile +2 · Audio File Library +2

Name of the Vulnerable Software and Affected Versions: Audio File Library versions 0.3.0 through 0.3.6 Description: The issue is a heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h. This allows remote attackers to cause a denial of service cra...

UBUNTU-CVE-2017-6834

Heap-based buffer overflow in the ulaw2linearbuf function in G711.cpp in Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service crash via a crafted file...