WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via vectors related to a large number of coefficients.
{ "binaries": [ { "binary_name": "audiofile-tools", "binary_version": "0.3.6-2ubuntu0.14.04.2" }, { "binary_name": "audiofile-tools-dbgsym", "binary_version": "0.3.6-2ubuntu0.14.04.2" }, { "binary_name": "libaudiofile-dbg", "binary_version": "0.3.6-2ubuntu0.14.04.2" }, { "binary_name": "libaudiofile-dev", "binary_version": "0.3.6-2ubuntu0.14.04.2" }, { "binary_name": "libaudiofile-dev-dbgsym", "binary_version": "0.3.6-2ubuntu0.14.04.2" }, { "binary_name": "libaudiofile1", "binary_version": "0.3.6-2ubuntu0.14.04.2" }, { "binary_name": "libaudiofile1-dbgsym", "binary_version": "0.3.6-2ubuntu0.14.04.2" } ], "availability": "No subscription required", "ubuntu_priority": "medium" }
{ "binaries": [ { "binary_name": "audiofile-tools", "binary_version": "0.3.6-2ubuntu0.16.04.1" }, { "binary_name": "audiofile-tools-dbgsym", "binary_version": "0.3.6-2ubuntu0.16.04.1" }, { "binary_name": "libaudiofile-dbg", "binary_version": "0.3.6-2ubuntu0.16.04.1" }, { "binary_name": "libaudiofile-dev", "binary_version": "0.3.6-2ubuntu0.16.04.1" }, { "binary_name": "libaudiofile-dev-dbgsym", "binary_version": "0.3.6-2ubuntu0.16.04.1" }, { "binary_name": "libaudiofile1", "binary_version": "0.3.6-2ubuntu0.16.04.1" }, { "binary_name": "libaudiofile1-dbgsym", "binary_version": "0.3.6-2ubuntu0.16.04.1" } ], "availability": "No subscription required", "ubuntu_priority": "medium" }