Unity Linux 20.1060e / 20.1070e Security Update: audiofile (UTSA-2026-017498)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017498 advisory. Heap-based buffer overflow in the readValue function in FileHandle.cpp in audiofile aka libaudiofile and Audio File Library 0.3.6 allows remote attackers to have...

RHSA-2025:23457 Red Hat Security Advisory: audiofile security update

Bulletin has no description...

Moderate: Red Hat Security Advisory: audiofile security update

An update for audiofile is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

audiofile: NULL pointer dereference in the ModuleState::setup function

A flaw was found in the Audiofile library. Processing a specially crafted input file can trigger a NULL pointer dereference, causing a crash to the application linked to the library and resulting in a denial of service...

CVE-2025-50950

A flaw was found in the Audiofile library. Processing a specially crafted input file can trigger a NULL pointer dereference, causing a crash to the application linked to the library and resulting in a denial of service. Mitigation Mitigation for this issue is either not available or the currently...

AudioFile 安全漏洞

AudioFile is a simple C++ library containing only header files by the individual developer Adam Stark in the UK. It is used to read and write audio files. A security vulnerability exists in AudioFile version v0.3.7, which stems from a null pointer dereference in the ModuleState::setup function...

Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.

...

WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service

...

Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 and 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file.

...

[SECURITY] [DLA 4255-1] audiofile security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4255-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz July 28, 2025 https://wiki.debian.org/LTS -...

OPENSUSE-SU-2025:15050-1 audiofile-0.3.6-15.1 on GA media

These are all security issues fixed in the audiofile-0.3.6-15.1 package on the GA media of openSUSE Tumbleweed...

Linux Distros Unpatched Vulnerability : CVE-2015-7747

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the afReadFrames function in audiofile aka libaudiofile and Audio File Library allows user-assisted remote attackers to cause a denial of...

Linux Distros Unpatched Vulnerability : CVE-2018-13440

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a...

Amazon Linux 2 : audiofile (ALAS-2024-2601)

The version of audiofile installed on the remote host is prior to 0.3.6-9. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2601 advisory. Buffer overflow in the afReadFrames function in audiofile aka libaudiofile and Audio File Library allows user-assisted...

Important: audiofile

Issue Overview: Buffer overflow in the afReadFrames function in audiofile aka libaudiofile and Audio File Library allows user-assisted remote attackers to cause a denial of service program crash or possibly execute arbitrary code via a crafted audio file, as demonstrated by...

USN-6558-1 audiofile vulnerabilities

It was discovered that audiofile could be made to dereference invalid memory. If a user or an automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS...

Fedora 37 : audiofile (2023-e23e432cb2)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-e23e432cb2 advisory. Patch for CVE-2022-24599 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

Debian: Security Advisory (DLA-3650-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AudioFile 缓冲区错误漏洞

AudioFile is a simple header-only C++ library from Adam Stark's personal developer in the UK. It is used to read and write audio files. A security vulnerability exists in AudioFile version 0.3.6, which stems from a buffer overflow vulnerability in the FilePOSIX::read function. An attacker could...

SUSE CVE-2015-7747

Buffer overflow in the afReadFrames function in audiofile aka libaudiofile and Audio File Library allows user-assisted remote attackers to cause a denial of service program crash or possibly execute arbitrary code via a crafted audio file, as demonstrated by sixteen-stereo-to-eight-mono.c...