| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-19662 | 5.8 |
An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2alaw_array in alaw.c that will lead to a denial of service.
|
29-10-2020 - 19:15 | 29-11-2018 - 08:29 | |
| CVE-2018-19661 | 4.3 |
An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulaw_array in ulaw.c that will lead to a denial of service.
|
29-10-2020 - 19:15 | 29-11-2018 - 08:29 | |
| CVE-2017-14634 | 4.3 |
In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.
|
29-10-2020 - 19:15 | 21-09-2017 - 07:29 | |
| CVE-2017-14246 | 5.8 |
An out of bounds read in the function d2ulaw_array() in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values.
|
29-10-2020 - 19:15 | 21-09-2017 - 13:29 | |
| CVE-2017-14245 | 5.8 |
An out of bounds read in the function d2alaw_array() in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values.
|
29-10-2020 - 19:15 | 21-09-2017 - 13:29 | |
| CVE-2018-13139 | 6.8 |
A stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file. The vulnerability can be trigger
|
24-08-2020 - 17:37 | 04-07-2018 - 14:29 | |
| CVE-2017-8365 | 4.3 |
The i2les_array function in pcm.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted audio file.
|
03-10-2019 - 00:03 | 30-04-2017 - 19:59 | |
| CVE-2017-8363 | 4.3 |
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file.
|
03-10-2019 - 00:03 | 30-04-2017 - 19:59 | |
| CVE-2018-19432 | 4.3 |
An issue was discovered in libsndfile 1.0.28. There is a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service.
|
10-06-2019 - 17:29 | 22-11-2018 - 05:29 | |
| CVE-2017-8361 | 6.8 |
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file.
|
05-03-2019 - 17:43 | 30-04-2017 - 19:59 | |
| CVE-2017-8362 | 4.3 |
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted audio file.
|
04-03-2019 - 13:09 | 30-04-2017 - 19:59 |