CVE-2017-6833

CVE-2017-6833 affects the Audio File Library (audiofile) 0.3.6; the runPull function in BlockCodec.cpp may trigger a divide-by-zero, crashing affected apps via a crafted file (DoS). Public advisories/patches indicate fixes in newer releases (e.g., audiofile 0.3.6-4 and equivalent upstream updates...

CVE-2017-6833

The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service divide-by-zero error and crash via a crafted file...

CVE-2017-6829

CVE-2017-6829 affects the Audio File Library (audiofile) 0.3.6. The vulnerability is a flaw in the decodeSample function in IMA.cpp that allows a crafted audio file to cause a denial of service (crash). Public advisories across multiple distributions confirm the issue and relate it to the same fa...

CVE-2017-6839

CVE-2017-6839 affects audiofile (Audio File Library) 0.3.6. The root cause is an integer overflow in MSADPCM.cpp (MSADPCM::…/MSADPCM.cpp) that can be triggered by a crafted file, leading to denial of service (crash). Public advisories confirm this family of issues across multiple vendors (Cloud F...

CVE-2017-6838

Audio File Library (audiofile) 0.3.6 is affected by CVE-2017-6838 due to an integer overflow in sfcommands/sfconvert.c, which can lead to denial of service via crafted files. The issue is acknowledged across multiple advisories (e.g., Arch Linux ASA-201708-9, Debian DSA-3814-1, Mageia/MGASA-2017-...

CVE-2017-6836

The CVE-2017-6836 entry concerns the Audio File Library (audiofile) with affected versions up to 0.3.6. The vulnerability is a heap-based buffer overflow in Expand3To4Module::run (SimpleModule.h), which can cause a denial of service (crash) via a crafted audio file. Public advisories confirm this...

CVE-2017-6835

CVE-2017-6835 affects the Audio File Library (audiofile) 0.3.6. The reset1 function in libaudiofile/modules/BlockCodec.cpp can trigger a divide-by-zero error, leading to denial of service (crash) when processing a crafted audio file. Public advisories (Arch Linux ASA-201708-9, Debian DSA-3814-1, ...

CVE-2017-6837

CVE-2017-6837 affects the Audio File Library (audiofile) 0.3.6. It is triggered by WAVE.cpp via vectors related to a large number of coefficients, enabling denial of service (crash). Multiple advisories note this vulnerability and provide fixes in newer audiofile packages: Debian lists 0.3.6-4 fo...

CVE-2017-6834

CVE-2017-6834 is a heap-based buffer overflow in ulaw2linear_buf of Audio File Library (audiofile) 0.3.6 and earlier, allowing a crafted file to crash targeted applications (DoS). Public advisories indicate multiple vendors/distros patched this family (e.g., 0.3.6-4 and newer). Affected pages als...

CVE-2017-6832

CVE-2017-6832 affects Audio File Library (audiofile) up to version 0.3.6, with a heap-based buffer overflow in MSADPCM.cpp:decodeBlock that can cause a remote crash via a crafted file (denial of service). Public advisories confirm multiple vendors released fixes (e.g., Debian DSA/SEC, ALAS/Cloud ...

CVE-2017-6839

Integer overflow in modules/MSADPCM.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...

CVE-2017-6830

Heap-based buffer overflow in the alaw2linearbuf function in G711.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...

CVE-2017-6831

Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 and 0.2.7 allows remote attackers to cause a denial of service crash via a crafted file...

CVE-2017-6835

The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service divide-by-zero error and crash via a crafted file...

CVE-2017-6837

WAVE.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via vectors related to a large number of coefficients...

CVE-2017-6838

Integer overflow in sfcommands/sfconvert.c in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...

CVE-2017-6838

Integer overflow in sfcommands/sfconvert.c in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...

CVE-2017-6837

WAVE.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via vectors related to a large number of coefficients...

CVE-2017-6834

Heap-based buffer overflow in the ulaw2linearbuf function in G711.cpp in Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service crash via a crafted file...

CVE-2017-6829

The decodeSample function in IMA.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...