330 matches found
CVE-2017-6829
The decodeSample function in IMA.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...
UBUNTU-CVE-2017-6829
The decodeSample function in IMA.cpp in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...
MGASA-2016-0427 Updated libgsf packages fix security vulnerability
An error within the "tardirectoryforfile" function gsf-infile-tar.c in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file CVE-2016-9888...
DEBIAN-CVE-2016-9888
An error within the "tardirectoryforfile" function gsf-infile-tar.c in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file...
CVE-2016-9888
An error within the "tardirectoryforfile" function gsf-infile-tar.c in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file...
CVE-2016-9888
An error within the "tardirectoryforfile" function gsf-infile-tar.c in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file...
CVE-2016-9888
An error within the "tardirectoryforfile" function gsf-infile-tar.c in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file...
CVE-2016-9888
The CVE-2016-9888 vulnerability affects GNOME Structured File Library (libgsf) before 1.14.41. The issue arises in tar_directory_for_file() within gsf-infile-tar.c, where a crafted TAR file can trigger a NULL pointer dereference, leading to a crash. Multiple connected advisories confirm the affec...
CVE-2016-9888
An error within the "tardirectoryforfile" function gsf-infile-tar.c in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file...
CVE-2016-9888
An error within the "tardirectoryforfile" function gsf-infile-tar.c in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file...
CVE-2016-9888
An error within the "tardirectoryforfile" function gsf-infile-tar.c in GNOME Structured File Library before 1.14.41 can be exploited to trigger a Null pointer dereference and subsequently cause a crash via a crafted TAR file...
[SECURITY] Fedora 22 Update: audiofile-0.3.6-9.fc22
The Audio File library is an implementation of the Audio File Library from SGI, which provides an API for accessing audio file formats like AIFF/AIFF-C, WAVE, and NeXT/Sun .snd/.au files. This library is used by the EsounD daemon. Install audiofile if you are installing EsounD or you need an API...
Audio File Library 0.2.6 - (libaudiofile) 'msadpcm.c' WAV File Processing Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/33066/info Audio File Library 'libaudiofile' is prone to a heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data. An attacker can exploit this issue to execute arbitrary...
Oracle Linux 3 / 4 : libgsf (ELSA-2007-0011)
From Red Hat Security Advisory 2007:0011 : Updated libgsf packages that fix a buffer overflow flaw are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The GNOME Structured File Library is a utility library for reading and writing...
USN-912-1: Audio File Library vulnerability
It was discovered that Audio File Library contained a heap-based buffer overflow. If a user or automated system processed a crafted WAV file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program...
Audio File Library 0.2.6 - libaudiofile msadpcm.c .WAV File Processing Buffer Overflow
Audio File Library 0.2.6 - libaudiofile msadpcm.c .WAV File Processing Buffer Overflow source: https://www.securityfocus.com/bid/33066/info Audio File Library 'libaudiofile' is prone to a heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data. An...
Audio File Library 0.2.6 - libaudiofile 'msadpcm.c .WAV' File Processing Buffer Overflow
source: https://www.securityfocus.com/bid/33066/info Audio File Library 'libaudiofile' is prone to a heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data. An attacker can exploit this issue to execute arbitrary machine code in the context of...
CVE-2007-1457
CVE-2007-1457 describes a buffer overflow in the urarlib_get function of Christian Scheurer’s UniquE RAR File Library (unrarlib/URARFileLib) v0.4. An attacker can cause arbitrary code execution by passing a long filename, rarfile, or libpassword to urarlib_get. The entry notes arbitrary code exec...
CVE-2007-1457
Buffer overflow in the urarlibget function in Christian Scheurer UniquE RAR File Library unrarlib, aka URARFileLib 0.4 allows context-dependent attackers to execute arbitrary code via a long 1 filename, 2 rarfile, or 3 libpassword argument...
RHEL 3 / 4 : libgsf (RHSA-2007:0011)
Updated libgsf packages that fix a buffer overflow flaw are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The GNOME Structured File Library is a utility library for reading and writing structured file formats. A heap based buff...