Audiofile

Audiofile

19 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-18781

Exploit
  • EPSS 0.03%
  • Veröffentlicht 22.08.2023 19:15:56
  • Zuletzt bearbeitet 21.11.2024 05:08:49

Heap buffer overflow vulnerability in FilePOSIX::read in File.cpp in audiofile 0.3.6 may cause denial-of-service via a crafted wav file, this bug can be triggered by the executable sfconvert.

6.5

CVE-2022-24599

Exploit
  • EPSS 0.18%
  • Veröffentlicht 24.02.2022 15:15:29
  • Zuletzt bearbeitet 21.08.2025 19:04:57

In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring functio...

8.8

CVE-2015-7747

  • EPSS 57.37%
  • Veröffentlicht 19.02.2020 21:15:11
  • Zuletzt bearbeitet 13.08.2025 20:48:07

Buffer overflow in the afReadFrames function in audiofile (aka libaudiofile and Audio File Library) allows user-assisted remote attackers to cause a denial of service (program crash) or possibly execute arbitrary code via a crafted audio file, as dem...

6.5

CVE-2019-13147

Exploit
  • EPSS 0.13%
  • Veröffentlicht 02.07.2019 00:15:10
  • Zuletzt bearbeitet 13.08.2025 20:48:07

In Audio File Library (aka audiofile) 0.3.6, there exists one NULL pointer dereference bug in ulaw2linear_buf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file.

8.8

CVE-2018-17095

Exploit
  • EPSS 18.18%
  • Veröffentlicht 16.09.2018 21:29:00
  • Zuletzt bearbeitet 13.08.2025 20:48:07

An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert.

6.5

CVE-2018-13440

Exploit
  • EPSS 9.12%
  • Veröffentlicht 08.07.2018 16:29:00
  • Zuletzt bearbeitet 13.08.2025 20:48:07

The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert.

5.5

CVE-2017-6839

  • EPSS 4.45%
  • Veröffentlicht 20.03.2017 16:59:03
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.

5.5

CVE-2017-6838

  • EPSS 5.77%
  • Veröffentlicht 20.03.2017 16:59:03
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Integer overflow in sfcommands/sfconvert.c in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.

5.5

CVE-2017-6836

  • EPSS 4.98%
  • Veröffentlicht 20.03.2017 16:59:02
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows remote attackers to cause a denial of service (crash)...

5.5

CVE-2017-6837

  • EPSS 6.09%
  • Veröffentlicht 20.03.2017 16:59:02
  • Zuletzt bearbeitet 20.04.2025 01:37:25

WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via vectors related to a large number of coefficients.