RSS   Vulnerabilities for 'Aubio'   RSS

2018-07-23
 
CVE-2018-14523

CWE-119
 

 
An issue was discovered in aubio 0.4.6. A buffer over-read can occur in new_aubio_pitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes.

 
 
CVE-2018-14522

CWE-119
 

 
An issue was discovered in aubio 0.4.6. A SEGV signal can occur in aubio_pitch_set_unit in pitch/pitch.c, as demonstrated by aubionotes.

 
 
CVE-2018-14521

CWE-119
 

 
An issue was discovered in aubio 0.4.6. A SEGV signal can occur in aubio_source_avcodec_readframe in io/source_avcodec.c, as demonstrated by aubiomfcc.

 
2017-12-11
 
CVE-2017-17555

CWE-476
 

 
The swri_audio_convert function in audioconvert.c in FFmpeg libswresample through 3.0.101, as used in FFmpeg 3.4.1, aubio 0.4.6, and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio file.

 
 
CVE-2017-17554

CWE-476
 

 
A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.

 
2017-11-29
 
CVE-2017-17054

CWE-369
 

 
In aubio 0.4.6, a divide-by-zero error exists in the function new_aubio_source_wavread() in source_wavread.c, which may lead to DoS when playing a crafted audio file.

 


Copyright 2019, cxsecurity.com

 

Back to Top