Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libsndfile vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2017-16942
In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function wav_w64_read_fmt_chunk() in wav_w64.c, which may lead to DoS when playing a crafted audio file.
Libsndfile Project Libsndfile 1.0.25
7.8
CVSSv3
CVE-2022-33064
An off-by-one error in function wav_read_header in src/wav.c in Libsndfile 1.1.0, results in a write out of bound, which allows an malicious user to execute arbitrary code, Denial of Service or other unspecified impacts.
Libsndfile Project Libsndfile 1.1.0
8.8
CVSSv3
CVE-2017-8361
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote malicious users to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2017-8365
The i2les_array function in pcm.c in libsndfile 1.0.28 allows remote malicious users to cause a denial of service (buffer over-read and application crash) via a crafted audio file.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2017-8362
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote malicious users to cause a denial of service (invalid read and application crash) via a crafted audio file.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2017-8363
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
8.8
CVSSv3
CVE-2018-13139
A stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file. The vulnerability can be triggered by the executable snd...
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2018-19661
An issue exists in libsndfile 1.0.28. There is a buffer over-read in the function i2ulaw_array in ulaw.c that will lead to a denial of service.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2018-19758
There is a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2017-14634
In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.
Libsndfile Project Libsndfile 1.0.28
Debian Debian Linux 8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »