CVE-2019-13147

In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file...

USN-3962-1: libpng vulnerability

It was discovered that libpng incorrectly handled certain memory operations. If a user or automated system were tricked into opening a specially crafted PNG file, a remote attacker could use this issue to cause libpng to crash, resulting in a denial of service, or possibly execute arbitrary code...

MATIO Out-of-Bounds Write Vulnerability

matio is a C library for reading and writing MATLAB MAT files. An out-of-bounds write vulnerability exists in libmatio.a in matio 1.5.13. An attacker can exploit this vulnerability to cause a SEGV in the MatVarFree function in mat.c...

UBUNTU-CVE-2019-9034

An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is a stack-based buffer over-read for a memcpy in the function ReadNextCell in mat5.c...

DEBIAN-CVE-2019-9030

An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is a stack-based buffer over-read in MatVarReadNextInfo5 in mat5.c...

UBUNTU-CVE-2019-9028

An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is a stack-based buffer over-read in the function InflateDimensions in inflate.c when called from ReadNextCell in mat5.c...

UBUNTU-CVE-2019-9038

An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is an out-of-bounds read problem with a SEGV in the function ReadNextCell in mat5.c...

DEBIAN-CVE-2019-9029

An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is an out-of-bounds read with a SEGV in the function MatVarReadNextInfo5 in mat5.c...

Exploit for Path Traversal in Rarlab Winrar

CVE-2018-20250-WinRAR-ACE Proof of concept code in C to explo...

DEBIAN-CVE-2018-20651

A NULL pointer dereference was discovered in elflinkaddobjectsymbols in elflink.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31.1. This occurs for a crafted ETDYN with no program headers. A specially crafted ELF file allows remote attackers to cause a...

[SECURITY] Fedora 29 Update: audiofile-0.3.6-21.fc29

The Audio File library is an implementation of the Audio File Library from SGI, which provides an API for accessing audio file formats like AIFF/AIFF-C, WAVE, and NeXT/Sun .snd/.au files. This library is used by the EsounD daemon. Install audiofile if you are installing EsounD or you need an API...

[SECURITY] Fedora 27 Update: audiofile-0.3.6-21.fc27

The Audio File library is an implementation of the Audio File Library from SGI, which provides an API for accessing audio file formats like AIFF/AIFF-C, WAVE, and NeXT/Sun .snd/.au files. This library is used by the EsounD daemon. Install audiofile if you are installing EsounD or you need an API...

CVE-2018-17095

An issue has been discovered in mpruett Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert...

CVE-2018-17095

An issue has been discovered in mpruett Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert...

CVE-2018-17095

An issue has been discovered in mpruett Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert...

CVE-2018-17095

CVE-2018-17095 — In mpruett Audio File Library (audiofile) up to version 0.3.6, a heap-based buffer overflow occurs in Expand3To4Module::run when running sfconvert. This is documented across multiple advisories (Ubuntu USN-6558-1, MiracleLinux AXSA-2020-752, Red Hat unpatched lines), indicating a...

CVE-2018-17095

An issue has been discovered in mpruett Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert...

CVE-2018-17095

An issue has been discovered in mpruett Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert...

CVE-2018-17095

An issue has been discovered in mpruett Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert...

PT-2018-13891 · Mpruett +6 · Audiofile +6

Name of the Vulnerable Software and Affected Versions: mpruett Audio File Library aka audiofile versions 0.3.0 through 0.3.6 Description: A heap-based buffer overflow issue has been found in the Expand3To4Module::run function when running sfconvert, potentially leading to exploitation...