CVE-2017-17054

Опубликовано: 29 нояб. 2017

Источник: debian

EPSS Низкий

Описание

In aubio 0.4.6, a divide-by-zero error exists in the function new_aubio_source_wavread() in source_wavread.c, which may lead to DoS when playing a crafted audio file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
aubio	fixed	0.4.6-1		package
aubio	no-dsa		stretch	package
aubio	not-affected		jessie	package
aubio	not-affected		wheezy	package

Примечания

https://github.com/aubio/aubio/issues/148

EPSS

Процентиль: 52%

0.00286

Низкий

Связанные уязвимости

CVE-2017-17054

CVSS3: 5.5

ubuntu

около 8 лет назад

In aubio 0.4.6, a divide-by-zero error exists in the function new_aubio_source_wavread() in source_wavread.c, which may lead to DoS when playing a crafted audio file.

CVE-2017-17054

CVSS3: 5.5

nvd

около 8 лет назад

In aubio 0.4.6, a divide-by-zero error exists in the function new_aubio_source_wavread() in source_wavread.c, which may lead to DoS when playing a crafted audio file.

openSUSE-SU-2018:0856-1

suse-cvrf

почти 8 лет назад

Security update for aubio

GHSA-vcwx-8mqh-2557

CVSS3: 5.5

github

больше 3 лет назад

Aubio Divide-By-Zero DoS vulnerability in new_aubio_source_wavread function

EPSS

Процентиль: 52%

0.00286

Низкий