Audacity@* Security Vulnerabilities and Issues — Audacity@* CVE List

Lucene search

AudacityteamAudacity*

5 matches found

CVE•added 2009/02/10 1:30 a.m.•335 views

CVE-2009-0490

Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .gro file containing a long string.

9.3CVSS7.9AI score0.5806EPSS

CVE•added 2020/11/30 10:15 p.m.•156 views

CVE-2020-11867

Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and play the temporary audio .au files located there.

3.3CVSS3.6AI score0.00051EPSS

CVE•added 2017/07/17 1:18 p.m.•71 views

CVE-2017-1000010

Audacity 2.1.2 through 2.3.2 is vulnerable to Dll HIjacking in the avformat-55.dll resulting arbitrary code execution.

7.8CVSS7.7AI score0.01374EPSS

CVE•added 2018/02/07 5:29 p.m.•28 views

CVE-2016-2540

Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted FORMATCHUNK structure.

5.5CVSS5.5AI score0.00908EPSS

CVE•added 2018/02/07 5:29 p.m.•28 views

CVE-2016-2541

Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP2 file.

5.5CVSS5.5AI score0.00859EPSS