EUVD-2019-5674

Malware in sbrugna...

EUVD-2018-5382

Malware in sbrugna...

Apple macOS AudioToolbox CAF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

SUSE CVE-2018-7254

The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service global buffer over-read, or possibly trigger a buffer overflow or incorrect memory allocation, via a maliciously crafted CAF file...

SUSE CVE-2018-13440

The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert...

SUSE CVE-2019-14498

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file...

NewStart CGSL CORE 5.05 / MAIN 5.05 : audiofile Multiple Vulnerabilities (NS-SA-2021-0171)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has audiofile packages installed that are affected by multiple vulnerabilities: - The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an...

NewStart CGSL CORE 5.04 / MAIN 5.04 : audiofile Multiple Vulnerabilities (NS-SA-2021-0046)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has audiofile packages installed that are affected by multiple vulnerabilities: - The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an...

Amazon Linux 2 : audiofile (ALAS-2020-1501)

The version of audiofile installed on the remote host is prior to 0.3.6-9. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1501 advisory. The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in...

Medium: audiofile

Issue Overview: The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert. CVE-2018-13440 An issue has been discovered in...

Denial Of Service (DoS)

vlc:bionic is vulnerable to denial of service DoS. A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player. As a result, an FPE can be triggered via a crafted CAF file...

Apple macOS AudioToolboxCore CAF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the AudioToolbox library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

Apple macOS AudioToolboxCore CAF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Apple macOS AudioToolboxCore CAF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the AudioToolbox library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

Arbitrary Code Execution

wavpack is vulnerable to arbitrary code execution. A buffer overflow in the ParseCaffHeaderConfig function in cli/caff.c allows a remote attacker to execute arbitrary code via a malicious CAF file...

CVE-2019-14498

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file...

CVE-2019-14498

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file...

Design/Logic Flaw

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file...

CVE-2019-14498

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file...

CVE-2019-14498

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file...