CVE-2009-0490

CVE-2009-0490 description and connected advisories confirm a stack-based buffer overflow in Audacity’s parsing of GRO files: specifically in String_parse::get_nonspace_quoted() within lib-src/allegro/strparse.cpp. Affected versions include Audacity 1.2.6 and other versions prior to 1.3.6. Remote ...

CVE-2020-11867

Audacity versions up to 2.3.3 store temporary files in /var/tmp/audacity-$USER with permissions set to 755, allowing any local user to read and play the temporary .au files. This is a local, post-authentication information disclosure risk. Multiple advisories reference CVE-2020-11867 (Ubuntu USN-...

CVE-2017-1000010

Audacity 2.1.2–2.3.2 is affected by a DLL hijacking vulnerability in avformat-55.dll that can lead to arbitrary code execution. The root cause is loading a malicious DLL due to improper handling of library paths, enabling an attacker to execute code with the application’s privileges. Affected ver...

CVE-2016-2541

Audacity before 2.1.2 is affected by a vulnerability in MP2 file handling that can cause memory corruption and a denial-of-service (application crash) when processing a crafted MP2 file. Remediation: upgrade to Audacity 2.1.2 (as noted in the 2.1.2 release notes). If exploitation details are not ...

CVE-2016-2540

CVE-2016-2540 affects Audacity prior to 2.1.2. A WAV file with a crafted FORMATCHUNK structure can cause a denial of service through memory corruption and an application crash. The vulnerability is described by multiple sources (debian/SUSE OSS) as a remote-doS condition; exploitation is possible...

CVE-2007-6061

CVE-2007-6061 affects Audacity 1.3.2, where Audacity creates a temporary directory with a predictable name without checking for prior existence, allowing local users to trigger a denial of service (recording deadlock) and potentially delete arbitrary files via a symlink attack. Connected advisori...