CVE-2017-6834

🗓️ 14 Mar 2017 00:00:00Reported by ubuntu.comType

Heap-based buffer overflow in G711.cpp of Audio File Library 0.3.6 allows remote attackers to cause denial of service via crafted file. Fixes for CVE-2017-6830 and CVE-2017-6834 included

Reporter	Title	Published	Views	Family All 72
Tenable Nessus	Amazon Linux 2 : audiofile (ALAS-2024-2601)	23 Jul 202400:00	–	nessus
Tenable Nessus	Debian DLA-867-1 : audiofile security update	24 Mar 201700:00	–	nessus
Tenable Nessus	Debian DSA-3814-1 : audiofile - security update	23 Mar 201700:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP3 : audiofile (EulerOS-SA-2020-2098)	28 Sep 202000:00	–	nessus
Tenable Nessus	openSUSE Security Update : audiofile (openSUSE-2017-476)	18 Apr 201700:00	–	nessus
Tenable Nessus	Oracle Linux 7 : audiofile (ELSA-2020-3877)	7 Sep 202300:00	–	nessus
Tenable Nessus	RHEL 5 : audiofile (Unpatched Vulnerability)	11 May 202400:00	–	nessus
Tenable Nessus	RHEL 6 : audiofile (Unpatched Vulnerability)	11 May 202400:00	–	nessus
Tenable Nessus	RHEL 7 : audiofile (Unpatched Vulnerability)	11 May 202400:00	–	nessus
Tenable Nessus	RHEL 5 : audiofile (Unpatched Vulnerability)	3 Jun 202400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	16.04	any	audiofile	0.3.6-2ubuntu0.16.04.1	audiofile_0.3.6-2ubuntu0.16.04.1_any.deb
Ubuntu	16.10	any	audiofile	0.3.6-3ubuntu0.1	audiofile_0.3.6-3ubuntu0.1_any.deb
Ubuntu	12.04	any	audiofile	0.3.3-2ubuntu0.3	audiofile_0.3.3-2ubuntu0.3_any.deb
Ubuntu	14.04	any	audiofile	0.3.6-2ubuntu0.14.04.2	audiofile_0.3.6-2ubuntu0.14.04.2_any.deb

Source	Link
blogs	www.blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-ulaw2linear_buf-g711-cpp
openwall	www.openwall.com/lists/oss-security/2017/03/13/6
ubuntu	www.ubuntu.com/security/notices/USN-3241-1
cve	www.cve.org/CVERecord

25 Aug 2025 22:36Current

7High risk

Vulners AI Score7

CVSS 24.3

CVSS 3.15.5

EPSS0.02893