Lucene search
K

255 matches found

Huntr
Huntr
added 2021/09/27 1:4 p.m.36 views

Heap-based Buffer Overflow in hoene/libmysofa

Description There are some heap-buffer-overflows in mysofa2json of libmysofa. They are in function loudness, mysofacheck and readOHDRHeaderMessageDataLayout. System info Ubuntu 20.04.3 LTS clang 12.0.1 libmysofa github master branch commit 0cb89cb Command to Reproduce build libmysofa with...

7.5CVSS1.5AI score0.01035EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.17 views

openSUSE: Security Advisory for libmysofa (openSUSE-SU-2021:0444-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.4AI score0.02255EPSS
Exploits8References2
OPENSUSE Linux
OPENSUSE Linux
added 2021/03/22 12:0 a.m.32 views

Security update for libmysofa (moderate)

openSUSE Security Update: Security update for libmysofa Announcement ID: openSUSE-SU-2021:0459-1 Rating: moderate References: 1149919 1149920 1149922 1149924 1149926 1159839 1160040 1181977 1181978 1181979 1181980 1181981 1182883 Cross-References: CVE-2019-16091 CVE-2019-16092 CVE-2019-16093...

9.8CVSS8.2AI score0.02255EPSS
Exploits8References13
Tenable Nessus
Tenable Nessus
added 2021/03/22 12:0 a.m.33 views

openSUSE Security Update : libmysofa (openSUSE-2021-444)

This update for libmysofa fixes the following issues : - Added security backports: ghhoene/libmysofa136 - CVE-2020-36152 - boo1181977 ghhoene/libmysofa138 - CVE-2020-36148 - boo1181981 ghhoene/libmysofa137 - CVE-2020-36149 - boo1181980 ghhoene/libmysofa134 - CVE-2020-36151 - boo1181978...

9.8CVSS6.7AI score0.02255EPSS
Exploits8References26
OSV
OSV
added 2021/03/21 11:9 p.m.6 views

OPENSUSE-SU-2021:0459-1 Security update for libmysofa

This update for libmysofa fixes the following issues: - Added security backports: ghhoene/libmysofa136 - CVE-2020-36152 - boo1181977 ghhoene/libmysofa138 - CVE-2020-36148 - boo1181981 ghhoene/libmysofa137 - CVE-2020-36149 - boo1181980 ghhoene/libmysofa134 - CVE-2020-36151 - boo1181978...

9.8CVSS7.2AI score0.02255EPSS
Exploits8References27
OSV
OSV
added 2021/03/18 1:7 p.m.7 views

OPENSUSE-SU-2021:0444-1 Security update for libmysofa

This update for libmysofa fixes the following issues: - Added security backports: ghhoene/libmysofa136 - CVE-2020-36152 - boo1181977 ghhoene/libmysofa138 - CVE-2020-36148 - boo1181981 ghhoene/libmysofa137 - CVE-2020-36149 - boo1181980 ghhoene/libmysofa134 - CVE-2020-36151 - boo1181978...

9.8CVSS7.2AI score0.02255EPSS
Exploits8References27
OPENSUSE Linux
OPENSUSE Linux
added 2021/03/18 12:0 a.m.33 views

Security update for libmysofa (moderate)

openSUSE Security Update: Security update for libmysofa Announcement ID: openSUSE-SU-2021:0444-1 Rating: moderate References: 1149919 1149920 1149922 1149924 1149926 1159839 1160040 1181977 1181978 1181979 1181980 1181981 1182883 Cross-References: CVE-2019-16091 CVE-2019-16092 CVE-2019-16093...

9.8CVSS8.2AI score0.02255EPSS
Exploits8References13
Tenable Nessus
Tenable Nessus
added 2021/03/01 12:0 a.m.29 views

Fedora 32 : libmysofa (2021-4e40ccb5e6)

The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-4e40ccb5e6 advisory. - Incorrect handling of input data in verifyAttribute function in the libmysofa library 0.5 - 1.1 will lead to NULL pointer dereference and...

8.8CVSS7.7AI score0.02255EPSS
Exploits5References6
Fedora
Fedora
added 2021/02/26 1:9 a.m.74 views

[SECURITY] Fedora 32 Update: libmysofa-1.2-4.fc32

This is a simple set of C functions to read AES SOFA files, if they contain HRTFs stored according to the AES69-2015 standard...

8.8CVSS1AI score0.02255EPSS
Exploits5
OpenVAS
OpenVAS
added 2021/02/26 12:0 a.m.19 views

Fedora: Security Advisory for libmysofa (FEDORA-2021-4e40ccb5e6)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS9.7AI score0.02255EPSS
Exploits5References2
Veracode
Veracode
added 2021/02/09 3:4 a.m.24 views

Arbitrary Code Execution

libmysofa.so is vulnerable to arbitrary code execution. The heap-based buffer overflow caused by a segmentation fault in loudness in libmysofa/src/hrtf/tools.c allows arbitrary code execution through access to unallocated memory block...

6.5CVSS4.6AI score0.01223EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2021/02/09 12:0 a.m.9 views

libmysofa null pointer dereference vulnerability (CNVD-2021-11057)

libmysofa is a lightweight C library for reading AES SOFA files. A null pointer dereference vulnerability exists in libmysofa 0.5 - 1.1. The vulnerability stems from the verifyAttribute function failing to properly handle input data. An attacker can exploit the vulnerability to cause segmentation...

6.5CVSS6.5AI score0.01154EPSS
Exploits1References1
CNVD
CNVD
added 2021/02/09 12:0 a.m.9 views

libmysofa null pointer dereference vulnerability (CNVD-2021-11056)

libmysofa is a lightweight C library for reading AES SOFA files. A null pointer dereference vulnerability exists in libmysofa 0.5 - 1.1. The vulnerability stems from the changeAttribute function failing to handle input data correctly. An attacker can exploit the vulnerability to cause segmentatio...

6.5CVSS6.5AI score0.01154EPSS
Exploits1References1
CNVD
CNVD
added 2021/02/09 12:0 a.m.12 views

libmysofa Heap Buffer Overflow Vulnerability

libmysofa is a lightweight C library for reading AES SOFA files. A heap buffer overflow vulnerability exists in libmysofa 0.5 - 1.1. The vulnerability stems from the mysofaresamplerresetmem function failing to handle input data correctly. An attacker can exploit this vulnerability to cause a heap...

6.5CVSS7AI score0.01223EPSS
Exploits1References1
CNVD
CNVD
added 2021/02/09 12:0 a.m.5 views

libmysofa heap buffer overflow vulnerability (CNVD-2021-11058)

libmysofa is a lightweight C library for reading AES SOFA files. A heap buffer overflow vulnerability exists in libmysofa 0.5 - 1.1. The vulnerability stems from a failure of the loudness function to handle input data correctly. An attacker can exploit this vulnerability to cause a heap buffer...

6.5CVSS7AI score0.01223EPSS
Exploits1References1
CNVD
CNVD
added 2021/02/09 12:0 a.m.8 views

libmysofa Buffer Overflow Vulnerability

libmysofa is a lightweight C library for reading AES SOFA files. A buffer overflow vulnerability exists in readDataVar in hdf/dataobject.c in libmysofa 0.5 - 1.1. An attacker can exploit this vulnerability to execute arbitrary code via a specially crafted SOFA...

8.8CVSS7.8AI score0.02255EPSS
Exploits1References1
NVD
NVD
added 2021/02/08 9:15 p.m.16 views

CVE-2020-36149

Incorrect handling of input data in changeAttribute function in the libmysofa library 0.5 - 1.1 will lead to NULL pointer dereference and segmentation fault error in case of restrictive memory protection or near NULL pointer overwrite in case of no memory restrictions e.g. in embedded environment...

6.5CVSS0.01154EPSS
Exploits1References2
OSV
OSV
added 2021/02/08 9:15 p.m.15 views

CVE-2020-36151

Incorrect handling of input data in mysofaresamplerresetmem function in the libmysofa library 0.5 - 1.1 will lead to heap buffer overflow and overwriting large memory block...

6.5CVSS7.2AI score
Exploits0References2
OSV
OSV
added 2021/02/08 9:15 p.m.1 views

DEBIAN-CVE-2020-36149

Incorrect handling of input data in changeAttribute function in the libmysofa library 0.5 - 1.1 will lead to NULL pointer dereference and segmentation fault error in case of restrictive memory protection or near NULL pointer overwrite in case of no memory restrictions e.g. in embedded environment...

6.5CVSS6.7AI score0.01154EPSS
Exploits1References1
OSV
OSV
added 2021/02/08 9:15 p.m.1 views

DEBIAN-CVE-2020-36151

Incorrect handling of input data in mysofaresamplerresetmem function in the libmysofa library 0.5 - 1.1 will lead to heap buffer overflow and overwriting large memory block...

6.5CVSS7.1AI score0.01223EPSS
Exploits1References1
Rows per page
Query Builder