Advisory ROSA-SA-2026-3150

Software: libsndfile 1.0.28 OS: ROSA Virtualization 3.1 unaffected versions = libsndfile-1.0.28-16.0.2.rv31 affected versions libsndfile-1.0.28-16.0.2.rv31 CVE-ID: CVE-2017-14634 BDU-ID: 2021-03755 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the double64init function of the libsndfile library ...

Linux Distros Unpatched Vulnerability : CVE-2017-14634

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In libsndfile 1.0.28, a divide-by-zero error exists in the function double64init in double64.c, which may lead to DoS when playing a crafted audio file...

SUSE CVE-2017-14634

In libsndfile 1.0.28, a divide-by-zero error exists in the function double64init in double64.c, which may lead to DoS when playing a crafted audio file...

Mageia: Security Advisory (MGASA-2018-0236)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:0351-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:0352-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2017-14634 affecting package libsndfile 1.0.28-14

CVE-2017-14634 affecting package libsndfile 1.0.28-14. An upgraded version of the package is available that resolves this issue...

CVE-2017-14634 affecting package libsndfile 1.0.28-14

CVE-2017-14634 affecting package libsndfile 1.0.28-14. An upgraded version of the package is available that resolves this issue...

Ubuntu 16.04 LTS : libsndfile vulnerabilities (USN-4704-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4704-1 advisory. It was discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause libsndfile to crash,...

Ubuntu: Security Advisory (USN-4704-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-4704-1: libsndfile vulnerabilities

It was discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause libsndfile to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2017-12562 It was discovered that libsndfile incorrectly handled certain...

[SECURITY] [DLA 2418-1] libsndfile security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2418-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz October 29, 2020 https://wiki.debian.org/LTS -...

Huawei EulerOS: Security Advisory for libsndfile (EulerOS-SA-2019-2616)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for libsndfile (EulerOS-SA-2019-2513)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP3 : libsndfile (EulerOS-SA-2019-2616)

According to the versions of the libsndfile package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The psffwrite function in fileio.c in libsndfile allows attackers to cause a denial of service divide-by-zero error and application crash via...

EulerOS 2.0 SP2 : libsndfile (EulerOS-SA-2019-2513)

According to the versions of the libsndfile package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In libsndfile before 1.0.28, an error in the 'headerread' function common.c when handling ID3 tags can be exploited to cause a stack-based...

GLSA-201811-23 : libsndfile: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201811-23 libsndfile: Multiple vulnerabilities Multiple vulnerabilities have been discovered in libsndfile. Please review the CVE identifiers referenced below for details. Impact : A remote attacker, by enticing a user to open a...

Updated libsndfile packages fix security vulnerabilities

An out of bounds read in the function d2alawarray in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values CVE-2017-14245. An out of bounds read in the function d2ulawarray in ulaw.c of libsndfil...

FreeBSD : libsndfile -- multiple vulnerabilities (2b386075-1d9c-11e8-b6aa-4ccc6adda413)

Agostino Sarubbo, Gentoo reports : CVE-2017-8361 Medium: The flacbuffercopy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file. CVE-2017-8362 Medium:...

openSUSE Security Update : libsndfile (openSUSE-2018-140)

This update for libsndfile fixes the following issues : - CVE-2017-16942: Divide-by-zero in the function wavw64readfmtchunk, which may lead to Denial of service bsc1069874. - CVE-2017-6892: Fixed an out-of-bounds read memory access in the aiffreadchanmap bsc1043978. - CVE-2017-14634: In libsndfil...