user/audiofile: multiple vulnerabilities
| Bugzilla ID | 124 |
| Alias(es) | CVE-2017-6827, CVE-2017-6828, CVE-2017-6829, CVE-2017-6830, CVE-2017-6831, CVE-2017-6832, CVE-2017-6833, CVE-2017-6834, CVE-2017-6835, CVE-2017-6836, CVE-2017-6837, CVE-2017-6838, CVE-2017-6839, CVE-2018-13440 |
| Reporter | Max Rees (sroracle) |
| Assignee | Max Rees (sroracle) |
| Reported | 2019-07-29 04:13:10 -0500 |
| Modified | 2020-06-22 06:06:49 -0500 |
| Status | CONFIRMED |
| Version | 1.0-BETA3 |
| Hardware | Adélie Linux / All |
| Importance | --- / normal |
| Package(s) | user/audiofile |
Description
CVE-2017-6827: https://nvd.nist.gov/vuln/detail/CVE-2017-6827
Heap-based buffer overflow in the MSADPCM::initializeCoefficients
function in MSADPCM.cpp in audiofile (aka libaudiofile and Audio File
Library) 0.3.6 allows remote attackers to have unspecified impact via
a crafted audio file.
CVE-2017-6828: https://nvd.nist.gov/vuln/detail/CVE-2017-6828
Heap-based buffer overflow in the readValue function in FileHandle.cpp
in audiofile (aka libaudiofile and Audio File Library) 0.3.6 allows
remote attackers to have unspecified impact via a crafted WAV file.
CVE-2017-6829: https://nvd.nist.gov/vuln/detail/CVE-2017-6829
The decodeSample function in IMA.cpp in Audio File Library (aka
audiofile) 0.3.6 allows remote attackers to cause a denial of service
(crash) via a crafted file.
CVE-2017-6830: https://nvd.nist.gov/vuln/detail/CVE-2017-6830
Heap-based buffer overflow in the alaw2linear_buf function in G711.cpp
in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to
cause a denial of service (crash) via a crafted file.
CVE-2017-6831: https://nvd.nist.gov/vuln/detail/CVE-2017-6831
Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp
in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to
cause a denial of service (crash) via a crafted file.
CVE-2017-6832: https://nvd.nist.gov/vuln/detail/CVE-2017-6832
Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio
File Library (aka audiofile) 0.3.6 allows remote attackers to cause a
denial of service (crash) via a crafted file.
CVE-2017-6833: https://nvd.nist.gov/vuln/detail/CVE-2017-6833
The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio
File Library (aka audiofile) 0.3.6 allows remote attackers to cause a
denial of service (divide-by-zero error and crash) via a crafted file.
CVE-2017-6834: https://nvd.nist.gov/vuln/detail/CVE-2017-6834
Heap-based buffer overflow in the ulaw2linear_buf function in G711.cpp
in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to
cause a denial of service (crash) via a crafted file.
CVE-2017-6835: https://nvd.nist.gov/vuln/detail/CVE-2017-6835
The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio
File Library (aka audiofile) 0.3.6 allows remote attackers to cause a
denial of service (divide-by-zero error and crash) via a crafted file.
CVE-2017-6836: https://nvd.nist.gov/vuln/detail/CVE-2017-6836
Heap-based buffer overflow in the Expand3To4Module::run function in
libaudiofile/modules/SimpleModule.h in Audio File Library (aka
audiofile) 0.3.6 allows remote attackers to cause a denial of service
(crash) via a crafted file.
CVE-2017-6837: https://nvd.nist.gov/vuln/detail/CVE-2017-6837
WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote
attackers to cause a denial of service (crash) via vectors related to
a large number of coefficients.
CVE-2017-6838: https://nvd.nist.gov/vuln/detail/CVE-2017-6838
Integer overflow in sfcommands/sfconvert.c in Audio File Library (aka
audiofile) 0.3.6 allows remote attackers to cause a denial of service
(crash) via a crafted file.
CVE-2017-6839: https://nvd.nist.gov/vuln/detail/CVE-2017-6839
Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka
audiofile) 0.3.6 allows remote attackers to cause a denial of service
(crash) via a crafted file.