AZL-45270 CVE-2022-31650 affecting package sox 14.4.2.0-34

In SoX 14.4.2, there is a floating-point exception in lsxaiffstartwrite in aiff.c in libsox.a...

SoX 输入验证错误漏洞

SoX is a set of open source audio processing tools. The product supports playing, converting and recording audio in multiple formats. A security vulnerability exists in SoX version 14.4.2, which stems from a floating point exception in lsxaiffstartwrite in aiff.c in libsox.a. The vulnerability is...

CVE-2021-40740

Adobe Audition version 14.4 and earlier is affected by a memory corruption vulnerability when parsing a M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability...

The vulnerability of Adobe Premiere Rush software, related to the execution of operations beyond buffer boundaries in memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe Premiere Rush relates to the execution of operations beyond the buffer in memory when processing M4A files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

PT-2021-4982 · Adobe · Audition

Name of the Vulnerable Software and Affected Versions: Adobe Audition versions 14.4 and earlier Description: The issue is related to a memory corruption vulnerability when parsing a M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is...

In libsndfile version 1.0.28 an error in the "aiff_read_chanmap()" function (aiff.c) can be exploited to cause an out-of-bounds read memory access via a specially crafted AIFF file.

...

libmysofa Out-of-Bounds Read Vulnerability

libmysofa is a library for reading AES SOFA files. An out-of-bounds read vulnerability exists in directblockRead in hdf/fractalhead.c in libmysofa 0.7. No details of the vulnerability are provided at this time...

DEBIAN-CVE-2019-11498

WavpackSetConfiguration64 in packutils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service application crash via a DFF file that lacks valid sample-rate data...

AZL-43615 CVE-2017-15642 affecting package sox 14.4.2.0-34

In lsxaiffstartread in aiff.c in Sound eXchange SoX 14.4.2, there is a Use-After-Free vulnerability triggered by supplying a malformed AIFF file...

UBUNTU-CVE-2017-6892

In libsndfile version 1.0.28, an error in the "aiffreadchanmap" function aiff.c can be exploited to cause an out-of-bounds read memory access via a specially crafted AIFF file...

UBUNTU-CVE-2015-6749

Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...

CentOS Update for flac CESA-2015:0767 centos7

Check the version of flac SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882152";...

RedHat Update for flac RHSA-2015:0767-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...