OESA-2026-2353 audiofile security update

The Audio File Library is a C-based library for reading and writing audio files in many common formats. Security Fixes: The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service...

Exploit for Write-what-where Condition in Linux Linux_Kernel

Dirty Frag check CVE-2026-43284 / CVE-2026-43500 Read-only...

OESA-2026-1785 audiofile security update

The Audio File Library is a C-based library for reading and writing audio files in many common formats. Security Fixes: In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial ...

OESA-2026-1784 audiofile security update

The Audio File Library is a C-based library for reading and writing audio files in many common formats. Security Fixes: In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial ...

OESA-2026-1783 audiofile security update

The Audio File Library is a C-based library for reading and writing audio files in many common formats. Security Fixes: In Audio File Library aka audiofile 0.3.6, there exists one NULL pointer dereference bug in ulaw2linearbuf in G711.cpp in libmodules.a that allows an attacker to cause a denial ...

audiofile: NULL pointer dereference in the ModuleState::setup function

A flaw was found in the Audiofile library. Processing a specially crafted input file can trigger a NULL pointer dereference, causing a crash to the application linked to the library and resulting in a denial of service...

Amazon Linux 2 : audiofile, --advisory ALAS2-2025-3087 (ALAS-2025-3087)

The version of audiofile installed on the remote host is prior to 0.3.6-10. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3087 advisory. Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function. CVE-2025-50950 Tenabl...

Linux Distros Unpatched Vulnerability : CVE-2025-50950

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function. CVE-2025-50950 Note that Nessus relies on the presenc...

SUSE CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

EUVD-2025-35696

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

AZL-68885 CVE-2025-50950 affecting package audiofile 0.3.6-27

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

CVE-2025-50950

CVE-2025-50950 affects the Audiofile library (v0.3.7) with a NULL pointer dereference in ModuleState::setup. The issue is confirmed by multiple advisories (Red Hat RHSA-2025:23457, Amazon ALAS2-2025-3087, EU/NVD entries) and assigns a CVSS v3.1 base score of 7.5 (High) with network attack vector,...

CVE-2025-50950

Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...

EUVD-2022-54990

Malicious code in bioql PyPI...

CVE-2024-50257 netfilter: Fix use-after-free in get_info()

In the Linux kernel, the following vulnerability has been resolved: netfilter: Fix use-after-free in getinfo ip6tablenat module unload has refcnt warning for UAF. call trace is: WARNING: CPU: 1 PID: 379 at kernel/module/main.c:853 moduleput+0x6f/0x80 Modules linked in: ip6tablenat- CPU: 1 UID: 0...

DEBIAN-CVE-2024-38605

In the Linux kernel, the following vulnerability has been resolved: ALSA: core: Fix NULL module pointer assignment at card init The commit 81033c6b584b "ALSA: core: Warn on empty module" introduced a WARNON for a NULL module pointer passed at sndcard object creation, and it also wraps the code...

CVE-2024-35955

A vulnerability was found in the Linux kernel's kprobes functionality, where a use-after-free issue could occur during kprobe registration when unloading a module. The problem arises due to the module's state changing from MODULESTATELIVE to MODULESTATEUNFORMED between two address checks...

CVE-2024-35955

In the Linux kernel, the following vulnerability has been resolved: kprobes: Fix possible use-after-free issue on kprobe registration When unloading a module, its state is changing MODULESTATELIVE - MODULESTATEGOING - MODULESTATEUNFORMED. Each change will take a time. ismoduletextaddress and...

CVE-2024-35955

In the Linux kernel, the following vulnerability has been resolved: kprobes: Fix possible use-after-free issue on kprobe registration When unloading a module, its state is changing MODULESTATELIVE - MODULESTATEGOING - MODULESTATEUNFORMED. Each change will take a time. ismoduletextaddress and...

CVE-2024-35955

CVE-2024-35955 : Linux kernel vulnerability in kprobe registration that could cause a use-after-free if module unload changes MODULE_STATE from LIVE/GOING to UNFORMED between address checks. The fix switches to using only __module_text_address() and performs try_module_get(module) while MODULE_ST...