AZL-7179 CVE-2017-6836 affecting package audiofile 0.3.6-27

Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library aka audiofile 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows remote attackers to cause a denial of service crash via a crafted file...

PT-2017-17363 · Libaudiofile +2 · Audio File Library +2

Name of the Vulnerable Software and Affected Versions: Audio File Library versions 0.3.0 through 0.3.6 Description: The issue is a heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h. This allows remote attackers to cause a denial of service cra...