Audio File Library Project Audio File Library 0.3.6

CPE Details

Audio File Library Project Audio File Library 0.3.6
audio_file_library_project
audio_file_library
0.3.6
2020-04-13
12h20 +00:00
2020-04-13
12h20 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:audio_file_library_project:audio_file_library:0.3.6:*:*:*:*:*:*:*

Informations

Vendor

audio_file_library_project

Product

audio_file_library

Version

0.3.6

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-24599 2022-02-21 23h00 +00:00 In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn't use zero bytes to truncate the data.
6.5
Medium
CVE-2019-13147 2019-06-30 22h00 +00:00 In Audio File Library (aka audiofile) 0.3.6, there exists one NULL pointer dereference bug in ulaw2linear_buf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file.
6.5
Medium
CVE-2018-17095 2018-09-16 19h00 +00:00 An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert.
8.8
High
CVE-2018-13440 2018-07-08 14h00 +00:00 The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert.
6.5
Medium