Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "0.3.6-2ubuntu0.14.04.2", "binary_name": "audiofile-tools" }, { "binary_version": "0.3.6-2ubuntu0.14.04.2", "binary_name": "audiofile-tools-dbgsym" }, { "binary_version": "0.3.6-2ubuntu0.14.04.2", "binary_name": "libaudiofile-dbg" }, { "binary_version": "0.3.6-2ubuntu0.14.04.2", "binary_name": "libaudiofile-dev" }, { "binary_version": "0.3.6-2ubuntu0.14.04.2", "binary_name": "libaudiofile-dev-dbgsym" }, { "binary_version": "0.3.6-2ubuntu0.14.04.2", "binary_name": "libaudiofile1" }, { "binary_version": "0.3.6-2ubuntu0.14.04.2", "binary_name": "libaudiofile1-dbgsym" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "0.3.6-2ubuntu0.16.04.1", "binary_name": "audiofile-tools" }, { "binary_version": "0.3.6-2ubuntu0.16.04.1", "binary_name": "audiofile-tools-dbgsym" }, { "binary_version": "0.3.6-2ubuntu0.16.04.1", "binary_name": "libaudiofile-dbg" }, { "binary_version": "0.3.6-2ubuntu0.16.04.1", "binary_name": "libaudiofile-dev" }, { "binary_version": "0.3.6-2ubuntu0.16.04.1", "binary_name": "libaudiofile-dev-dbgsym" }, { "binary_version": "0.3.6-2ubuntu0.16.04.1", "binary_name": "libaudiofile1" }, { "binary_version": "0.3.6-2ubuntu0.16.04.1", "binary_name": "libaudiofile1-dbgsym" } ] }