SUSE CVE-2009-1791

Heap-based buffer overflow in aiffreadheader in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an AIFF file with an invalid header value...

Ubuntu: Security Advisory (USN-849-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mandriva Security Advisory MDVSA-2009:132-1 (libsndfile)

The remote host is missing an update to libsndfile announced via advisory MDVSA-2009:132-1. OpenVAS Vulnerability Test $Id: mdksa20091321.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:132-1 libsndfile Authors: Thomas Reinke Copyright: Copyright c...

Fedora Core 11 FEDORA-2009-11618 (libsndfile)

The remote host is missing an update to libsndfile announced via advisory FEDORA-2009-11618. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

Fedora Core 10 FEDORA-2009-11499 (libsndfile)

The remote host is missing an update to libsndfile announced via advisory FEDORA-2009-11499. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

Ubuntu 8.04 LTS / 8.10 / 9.04 : libsndfile vulnerabilities (USN-849-1)

Tobias Klein discovered a heap-based buffer overflow in libsndfile. If a user or automated system processed a crafted VOC file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program. CVE-2009-1788...

USN-849-1: libsndfile vulnerabilities

Tobias Klein discovered a heap-based buffer overflow in libsndfile. If a user or automated system processed a crafted VOC file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program. CVE-2009-1788...

SLES11: Security update for libsndfile

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: libsndfile More details may also be found by searching for the SuSE Enterprise Server 11 patch database linked in the references. SPDX-FileCopyrightText: 200...

openSUSE 10 Security Update : libsndfile (libsndfile-6277)

This update of libsndfile fixes a heap-based buffer overflow in vocreadheader CVE-2009-1788 and a heap-based buffer overflow in aiffreadheader CVE-2009-1791. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

openSUSE Security Update : libsndfile (libsndfile-949)

This update of libsndfile fixes a heap-based buffer overflow in vocreadheader CVE-2009-1788 and a heap-based buffer overflow in aiffreadheader CVE-2009-1791. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

Debian: Security Advisory (DSA-1814-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1814-1 (libsndfile)

The remote host is missing an update to libsndfile announced via advisory DSA 1814-1. OpenVAS Vulnerability Test $Id: deb18141.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1814-1 libsndfile Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Debian DSA-1814-1 : libsndfile - heap-based buffer overflow

Two vulnerabilities have been found in libsndfile, a library to read and write sampled audio data. The Common Vulnerabilities and Exposures project identified the following problems : - CVE-2009-1788 Tobias Klein discovered that the VOC parsing routines suffer of a heap-based buffer overflow whic...

[SECURITY] [DSA 1814-1] New libsndfile packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA-1814-1 [email protected] http://www.debian.org/security/ Nico Golde June 13th, 2009 http://www.debian.org/security/faq -...

DSA-1814-1 libsndfile - arbitrary code execution

Bulletin has no description...

Mandrake Security Advisory MDVSA-2009:132 (libsndfile)

The remote host is missing an update to libsndfile announced via advisory MDVSA-2009:132. OpenVAS Vulnerability Test $Id: mdksa2009132.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:132 libsndfile Authors: Thomas Reinke Copyright: Copyright c 2009...

FreeBSD Ports: libsndfile

The remote host is missing an update to the system as announced in the referenced advisory. VID 6355efdb-4d4d-11de-8811-0030843d3802 OpenVAS Vulnerability Test $ Description: Auto generated from VID 6355efdb-4d4d-11de-8811-0030843d3802 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

FreeBSD Ports: libsndfile

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Gentoo Security Advisory GLSA 200905-09 (libsndfile)

The remote host is missing updates announced in advisory GLSA 200905-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

libsndfile: User-assisted execution of arbitrary code

Background libsndfile is a C library for reading and writing files containing sampled sound. Description The following vulnerabilities have been found in libsndfile: Tobias Klein reported that the headerread function in src/common.c uses user input for calculating a buffer size, possibly leading ...