Astra Linux – Vulnerability in libsndfile

In version 1.2.2 of libsndfile, there is a buffer overflow issue in the oggvorbis.c file, specifically in the vorbisanalysiswrote out-of-bounds read function...

MiracleLinux 9 : libsndfile-1.0.31-8.el9_5.2 (AXSA:2024-9490:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9490:04 advisory. libsndfile: Segmentation fault error in oggvorbis.c:417 vorbisanalysiswrote CVE-2024-50612 Tenable has extracted the preceding description block directly fro...

MiracleLinux 8 : libsndfile-1.0.28-16.el8_10 (AXSA:2024-9429:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9429:03 advisory. libsndfile: Segmentation fault error in oggvorbis.c:417 vorbisanalysiswrote CVE-2024-50612 Tenable has extracted the preceding description block directly fro...

MiracleLinux 3 : libvorbis-1.1.2-3.6.0.1.AXS3 (AXSA:2012-272:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-272:01 advisory. Ogg Vorbis is a fully open, non-proprietary, patent-and royalty-free, general-purpose compressed audio format for audio and music at fixed and variable bitrat...

CVE-2023-45678

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

Unity Linux 20.1070e Security Update: libsndfile (UTSA-2025-991103)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991103 advisory. libsndfile through 1.2.2 has an oggvorbis.c vorbisanalysiswrote out-of-bounds read. Tenable has extracted the preceding description block directly from the Unity Lin...

EUVD-2019-4731

Malware in sbrugna...

EUVD-2019-4736

Malware in sbrugna...

EUVD-2019-4734

Malware in sbrugna...

EUVD-2019-4733

Malware in sbrugna...

EUVD-2019-4730

Malware in sbrugna...

EUVD-2019-4732

Malware in sbrugna...

EUVD-2018-1811

Malware in sbrugna...

EUVD-2019-4735

Malware in sbrugna...

EUVD-2023-49968

Malicious code in bioql PyPI...

EUVD-2023-49966

Malicious code in bioql PyPI...

CLSA-2025-1758041082 libsndfile: Fix of CVE-2024-50612

CVE-2024-50612: fix out-of-bounds read in vorbisanalysiswrote in oggvorbis.c...

Linux Distros Unpatched Vulnerability : CVE-2018-1000050

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sean Barrett stbvorbis version 1.12 and earlier contains a Buffer Overflow vulnerability in All vorbis decoding paths. that can result in memory corruption,...

CVE-2019-13218

Division by zero in the predictpoint function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file...

CVE-2019-13222

An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...