CVE-2025-62187

In Ankitects Anki before 25.02.6, crafted sound file references could cause files to be written to arbitrary locations on Windows and Linux media file pathnames are not necessarily relative to the media folder...

EUVD-2010-4349

Malware in sbrugna...

EUVD-2018-6830

Malware in sbrugna...

Ankitects Anki 安全漏洞

Ankitects Anki is an open source program by the individual developers of Ankitects to help remember information through the use of flash cards. A security vulnerability exists in Ankitects Anki versions prior to 25.02.6, which stems from a specially crafted sound file reference that could result ...

EUVD-2023-43785

Malicious code in bioql PyPI...

libsndfile 安全漏洞

libsndfile is a libsndfile open source AC library for reading and writing sound files containing sampled audio data. A security vulnerability exists in libsndfile 1.2.2 and earlier versions, which stems from a buffer overflow when processing malformed IRCAM audio files, which could lead to memory...

[SECURITY] Fedora 41 Update: SDL2_sound-2.0.4-1.fc41

SDLsound is a library that handles the decoding of several popular sound file formats, such as .WAV and .OGG. It is meant to make the programmer's sound playback tasks simpler. The programmer gives SDLsound a filename, or feeds it data directly from one of many sources, and then reads the decoded...

Moderate: Red Hat Security Advisory: libsndfile:1.0.31 security update

An update for the libsndfile:1.0.31 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Moderate: Red Hat Security Advisory: libsndfile security update

An update for libsndfile is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

ALSA-2024:11237 Moderate: libsndfile:1.0.31 security update

libsndfile is a C library for reading and writing files containing sampled sound, such as AIFF, AU, or WAV. Security Fixes: libsndfile: Segmentation fault error in oggvorbis.c:417 vorbisanalysiswrote CVE-2024-50612 For more details about the security issues, including the impact, a CVSS score,...

The vulnerability of the stb_vorbis.c file in the Libstb library for C/C++ allows a hacker to execute arbitrary code.

The vulnerability of the stbvorbis.c file in the C/C++ Libstb library is related to buffer overflows in the dynamic memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using a specially created .ogg file...

[SECURITY] Fedora 37 Update: audiofile-0.3.6-36.fc37

The Audio File library is an implementation of the Audio File Library from SGI, which provides an API for accessing audio file formats like AIFF/AIFF-C, WAVE, and NeXT/Sun .snd/.au files. This library is used by the EsounD daemon. Install audiofile if you are installing EsounD or you need an API...

[SECURITY] Fedora 38 Update: audiofile-0.3.6-36.fc38

The Audio File library is an implementation of the Audio File Library from SGI, which provides an API for accessing audio file formats like AIFF/AIFF-C, WAVE, and NeXT/Sun .snd/.au files. This library is used by the EsounD daemon. Install audiofile if you are installing EsounD or you need an API...

CVE-2023-3098

A vulnerability classified as critical has been found in KylinSoft youker-assistant on KylinOS. Affected is the function restoreallsoundfile. The manipulation leads to path traversal: '../filedir'. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

PT-2023-23096 · Kylinsoft · Youker-Assistant

Name of the Vulnerable Software and Affected Versions: KylinSoft youker-assistant versions prior to 3.0.2-0kylin6k70-23 Description: A critical issue has been found in the restore all sound file function, allowing for path traversal manipulation, such as '../filedir'. This issue requires local...

USN-5409-1: libsndfile vulnerability

It was discovered that libsndfile was incorrectly performing memory management operations and incorrectly using buffers when executing its FLAC codec. If a user or automated system were tricked into processing a specially crafted sound file, an attacker could possibly use this issue to cause a...

CVE-2020-12840

ismartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to upload sound files via /index.php...

[SECURITY] Fedora 30 Update: sox-14.4.2.0-28.fc30

SoX Sound eXchange is a sound file format converter. SoX can convert between many different digitized sound formats and perform simple sound manipulation functions, including sound effects...

sox security update

CentOS Errata and Security Advisory CESA-2019:2283 An update for sox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, i...

[SECURITY] Fedora 29 Update: aubio-0.4.9-1.fc29

aubio is a library for audio labeling. Its features include segmenting a sound file before each of its attacks, performing pitch detection, tapping the beat and producing midi streams from live audio. The name aubio comes from 'audio' with a typo: several transcription errors are likely to be fou...