Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libsndfile project libsndfile vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2009-1791
Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 up to and including 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via an AIF...
Mega-nerd Libsndfile 1.0.16
Mega-nerd Libsndfile 1.0.15
Nullsoft Winamp 5.552
Mega-nerd Libsndfile 1.0.19
Nullsoft Winamp 5.51
Nullsoft Winamp 5.52
Mega-nerd Libsndfile 1.0.18
Mega-nerd Libsndfile 1.0.17
Nullsoft Winamp 5.5
Nullsoft Winamp 5.55
Nullsoft Winamp 5.54
Nullsoft Winamp 5.541
9.3
CVSSv2
CVE-2009-1788
Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 up to and including 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a VOC f...
Nullsoft Winamp 5.541
Nullsoft Winamp 5.51
Mega-nerd Libsndfile 1.0.17
Mega-nerd Libsndfile 1.0.16
Nullsoft Winamp 5.552
Mega-nerd Libsndfile 1.0.15
Nullsoft Winamp 5.55
Nullsoft Winamp 5.54
Mega-nerd Libsndfile 1.0.19
Mega-nerd Libsndfile 1.0.18
Nullsoft Winamp 5.52
Nullsoft Winamp 5.5
7.5
CVSSv2
CVE-2017-12562
Heap-based Buffer Overflow in the psf_binheader_writef function in common.c in libsndfile up to and including 1.0.28 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 9.0
6.8
CVSSv2
CVE-2021-3246
A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows malicious users to execute arbitrary code via a crafted WAV file.
Libsndfile Project Libsndfile 1.0.30
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Debian Debian Linux 10.0
6.8
CVSSv2
CVE-2018-13139
A stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file. The vulnerability can be triggered by the executable snd...
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
6.8
CVSSv2
CVE-2017-6892
In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" function (aiff.c) can be exploited to cause an out-of-bounds read memory access via a specially crafted AIFF file.
Libsndfile Project Libsndfile 1.0.28
6.8
CVSSv2
CVE-2017-8361
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote malicious users to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
5.8
CVSSv2
CVE-2021-4156
An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file (via tricking a user to open or otherwise) to an application linked with libsndfile and using the FLAC codec, could trigger an out-of-bou...
Libsndfile Project Libsndfile 1.1.10
Debian Debian Linux 9.0
Debian Debian Linux 10.0
5.8
CVSSv2
CVE-2018-19662
An issue exists in libsndfile 1.0.28. There is a buffer over-read in the function i2alaw_array in alaw.c that will lead to a denial of service.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
5.8
CVSSv2
CVE-2017-14245
An out of bounds read in the function d2alaw_array() in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »