CVE-2017-17554

Опубликовано: 12 дек. 2017

Источник: debian

Описание

A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
aubio	fixed	0.4.6-1		package
aubio	no-dsa		stretch	package
aubio	no-dsa		jessie	package
aubio	no-dsa		wheezy	package

Примечания

Fixed by: https://github.com/aubio/aubio/commit/a81b12a3b4174953b3bc7ef4c37103f4d5636740
https://github.com/IvanCql/vulnerability/blob/master/An%20NULL%20pointer%20dereference(DoS)%20Vulnerability%20was%20found%20in%20function%20%20aubio_source_avcodec_readframe%20of%20aubio.md
https://github.com/aubio/aubio/issues/137

Связанные уязвимости

CVE-2017-17554

CVSS3: 5.5

ubuntu

около 8 лет назад

A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.

CVE-2017-17554

CVSS3: 5.5

nvd

около 8 лет назад

A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.

openSUSE-SU-2018:1734-1

suse-cvrf

больше 7 лет назад

Security update for aubio

openSUSE-SU-2018:1733-1

suse-cvrf

больше 7 лет назад

Security update for aubio

GHSA-45h5-cqqw-9rjw

CVSS3: 5.5

github

больше 3 лет назад

Aubio is vulnerable to a NULL pointer dereference