Heap buffer overflow vulnerability in FilePOSIX::read in File.cpp in audiofile 0.3.6 may cause denial-of-service via a crafted wav file, this bug can be triggered by the executable sfconvert.
Max CVSS
5.5
EPSS Score
0.04%
Published
2023-08-22
Updated
2023-08-25
Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
Max CVSS
5.5
EPSS Score
0.50%
Published
2017-03-20
Updated
2017-11-04
Integer overflow in sfcommands/sfconvert.c in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
Max CVSS
5.5
EPSS Score
0.50%
Published
2017-03-20
Updated
2017-11-04
WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via vectors related to a large number of coefficients.
Max CVSS
5.5
EPSS Score
0.91%
Published
2017-03-20
Updated
2017-11-04
Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows remote attackers to cause a denial of service (crash) via a crafted file.
Max CVSS
5.5
EPSS Score
0.72%
Published
2017-03-20
Updated
2021-02-01
The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted file.
Max CVSS
5.5
EPSS Score
0.72%
Published
2017-03-20
Updated
2017-11-04
Heap-based buffer overflow in the ulaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file.
Max CVSS
5.5
EPSS Score
0.72%
Published
2017-03-20
Updated
2021-03-31
The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted file.
Max CVSS
5.5
EPSS Score
0.72%
Published
2017-03-20
Updated
2017-11-04
Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file.
Max CVSS
5.5
EPSS Score
1.27%
Published
2017-03-20
Updated
2021-02-01
Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 and 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file.
Max CVSS
5.5
EPSS Score
0.46%
Published
2017-03-20
Updated
2021-03-31
Heap-based buffer overflow in the alaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
Max CVSS
5.5
EPSS Score
0.71%
Published
2017-03-20
Updated
2017-11-04
The decodeSample function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
Max CVSS
5.5
EPSS Score
0.87%
Published
2017-03-20
Updated
2019-10-03
Heap-based buffer overflow in the readValue function in FileHandle.cpp in audiofile (aka libaudiofile and Audio File Library) 0.3.6 allows remote attackers to have unspecified impact via a crafted WAV file.
Max CVSS
7.8
EPSS Score
0.49%
Published
2017-03-15
Updated
2017-11-04
Heap-based buffer overflow in the MSADPCM::initializeCoefficients function in MSADPCM.cpp in audiofile (aka libaudiofile and Audio File Library) 0.3.6 allows remote attackers to have unspecified impact via a crafted audio file.
Max CVSS
7.8
EPSS Score
0.31%
Published
2017-03-15
Updated
2017-11-04
14 vulnerabilities found