Ardour : Security Vulnerabilities, CVEs,
Ardour 2.8.11 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Max CVSS
6.9
EPSS Score
0.04%
Published
2010-10-20
Updated
2010-11-03
Ardour v5.12 contains a use-after-free vulnerability in the component ardour/libs/pbd/xml++.cc when using xmlFreeDoc and xmlXPathFreeContext.
Max CVSS
9.8
EPSS Score
0.22%
Published
2021-10-08
Updated
2021-10-15
2 vulnerabilities found