SUSE SLES12 Security Update : audiofile (SUSE-SU-2025:02283-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02283-1 advisory. - CVE-2019-13147: Do not allow too many channel to prevent NULL pointer dereference bsc1140031. - CVE-2022-24599: Clear buffer when allocating...

SUSE-SU-2025:02283-1 Security update for audiofile

This update for audiofile fixes the following issues: - CVE-2019-13147: Do not allow too many channel to prevent NULL pointer dereference bsc1140031. - CVE-2022-24599: Clear buffer when allocating bsc1196487...

SUSE-SU-2025:01559-1 Security update for audiofile

This update for audiofile fixes the following issues: - CVE-2019-13147: Fixed NULL pointer dereference in ulaw2linearbuf that could lead to DOS bsc1140031. - CVE-2022-24599: unverified user input when processing audio files can lead to information leak bsc1196487...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : audiofile (SUSE-SU-2025:1559-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1559-1 advisory. - CVE-2019-13147: Fixed NULL pointer dereference in ulaw2linearbuf that could lead to DOS...

audiofile-0.3.6-15.1 on GA media (moderate)

audiofile-0.3.6-15.1 on GA media Announcement ID: openSUSE-SU-2025:15050-1 Rating: moderate Cross-References: CVE-2022-24599 CVSS scores: CVE-2022-24599 SUSE : 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now b...

RHEL 6 : audiofile (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - audiofile: Heap-based buffer overflow in Expand3To4Module::run when running sfconvert CVE-2018-17095 -...

USN-6558-1: audiofile vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description It was discovered that audiofile could be made to dereference invalid memory. If a user or an automated system were tricked into opening a specially crafted file, an attacker could...

EulerOS 2.0 SP8 : audiofile (EulerOS-SA-2024-1255)

According to the versions of the audiofile package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to...

USN-6558-1: audiofile vulnerabilities

It was discovered that audiofile could be made to dereference invalid memory. If a user or an automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS...

Updated audiofile packages fix a security vulnerability

The updated packages fix a security vulnerability In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring...

Fedora 38 : audiofile (2023-07669abb35)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-07669abb35 advisory. Patch for CVE-2022-24599 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

Fedora 37 : audiofile (2023-e23e432cb2)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-e23e432cb2 advisory. Patch for CVE-2022-24599 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

Fedora 39 : audiofile (2023-47d4f575a3)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-47d4f575a3 advisory. Patch for CVE-2022-24599 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

Debian: Security Advisory (DLA-3650-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3650-1] audiofile security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3650-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès November 12, 2023 https://wiki.debian.org/LTS -...

Amazon Linux 2 : audiofile (ALAS-2023-1997)

The version of audiofile installed on the remote host is prior to 0.3.6-10. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1997 advisory. In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows ...

Medium: audiofile

Issue Overview: In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn...

CVE-2022-24599

In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn't use zero byte...

CVE-2022-24599

creationtimestamp| type| source ---|---|--- 2022-02-24 18:14:39+00:00| seen| https://t.me/cibsecurity/37990 2025-06-13 17:12:01+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lriwmg2oz226...

AZL-66563 CVE-2022-24599 affecting package audiofile 0.3.6-27

In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn't use zero byte...