Test Kennung:	1.3.6.1.4.1.25623.1.1.2.2020.2098
Kategorie:	Huawei EulerOS Local Security Checks
Titel:	Huawei EulerOS: Security Advisory for audiofile (EulerOS-SA-2020-2098)
Zusammenfassung:	The remote host is missing an update for the Huawei EulerOS 'audiofile' package(s) announced via the EulerOS-SA-2020-2098 advisory.
Beschreibung:	Summary: The remote host is missing an update for the Huawei EulerOS 'audiofile' package(s) announced via the EulerOS-SA-2020-2098 advisory. Vulnerability Insight: The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert.(CVE-2018-13440) An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert.(CVE-2018-17095) Heap-based buffer overflow in the MSADPCM::initializeCoefficients function in MSADPCM.cpp in audiofile (aka libaudiofile and Audio File Library) 0.3.6 allows remote attackers to have unspecified impact via a crafted audio file.(CVE-2017-6827) Heap-based buffer overflow in the readValue function in FileHandle.cpp in audiofile (aka libaudiofile and Audio File Library) 0.3.6 allows remote attackers to have unspecified impact via a crafted WAV file.(CVE-2017-6828) The decodeSample function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.(CVE-2017-6829) Heap-based buffer overflow in the alaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.(CVE-2017-6830) Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.(CVE-2017-6831) Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.(CVE-2017-6832) The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted file.(CVE-2017-6833) Heap-based buffer overflow in the ulaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.(CVE-2017-6834) The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted file.(CVE-2017-6835) Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.(CVE-2017-6836) WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via vectors related to a large number of coefficients.(CVE-2017-6837) Integer overflow in sfcommands/sfconvert.c in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'audiofile' package(s) on Huawei EulerOS V2.0SP3. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6827 Debian Security Information: DSA-3814 (Google Search) http://www.debian.org/security/2017/dsa-3814 https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-msadpcminitializecoefficients-msadpcm-cpp/ Common Vulnerability Exposure (CVE) ID: CVE-2017-6828 BugTraq ID: 97183 http://www.securityfocus.com/bid/97183 https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-readvalue-filehandle-cpp/ Common Vulnerability Exposure (CVE) ID: CVE-2017-6829 BugTraq ID: 97189 http://www.securityfocus.com/bid/97189 https://blogs.gentoo.org/ago/2017/02/20/audiofile-global-buffer-overflow-in-decodesample-ima-cpp/ https://github.com/antlarr/audiofile/commit/25eb00ce913452c2e614548d7df93070bf0d066f https://github.com/mpruett/audiofile/issues/33 http://www.openwall.com/lists/oss-security/2017/03/13/1 Common Vulnerability Exposure (CVE) ID: CVE-2017-6830 https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-alaw2linear_buf-g711-cpp/ https://github.com/mpruett/audiofile/issues/34 https://github.com/mpruett/audiofile/pull/42 http://www.openwall.com/lists/oss-security/2017/03/13/2 Common Vulnerability Exposure (CVE) ID: CVE-2017-6831 BugTraq ID: 97588 http://www.securityfocus.com/bid/97588 https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-imadecodeblockwave-ima-cpp/ https://github.com/Hack-Me/Pocs_for_Multi_Versions/tree/main/CVE-2017-6831 https://github.com/antlarr/audiofile/commit/a2e9eab8ea87c4ffc494d839ebb4ea145eb9f2e6 https://github.com/mpruett/audiofile/issues/35 http://www.openwall.com/lists/oss-security/2017/03/13/3 Common Vulnerability Exposure (CVE) ID: CVE-2017-6832 BugTraq ID: 97589 http://www.securityfocus.com/bid/97589 https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-msadpcmdecodeblock-msadpcm-cpp/ https://github.com/mpruett/audiofile/issues/36 http://www.openwall.com/lists/oss-security/2017/03/13/4 Common Vulnerability Exposure (CVE) ID: CVE-2017-6833 https://blogs.gentoo.org/ago/2017/02/20/audiofile-divide-by-zero-in-blockcodecrunpull-blockcodec-cpp/ https://github.com/mpruett/audiofile/issues/37 http://www.openwall.com/lists/oss-security/2017/03/13/5 Common Vulnerability Exposure (CVE) ID: CVE-2017-6834 https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-ulaw2linear_buf-g711-cpp/ https://github.com/mpruett/audiofile/issues/38 http://www.openwall.com/lists/oss-security/2017/03/13/6 Common Vulnerability Exposure (CVE) ID: CVE-2017-6835 https://blogs.gentoo.org/ago/2017/02/20/audiofile-divide-by-zero-in-blockcodecreset1-blockcodec-cpp/ https://github.com/mpruett/audiofile/issues/39 http://www.openwall.com/lists/oss-security/2017/03/13/7 Common Vulnerability Exposure (CVE) ID: CVE-2017-6836 https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-expand3to4modulerun-simplemodule-h/ https://github.com/mpruett/audiofile/issues/40 http://www.openwall.com/lists/oss-security/2017/03/13/8 Common Vulnerability Exposure (CVE) ID: CVE-2017-6837 BugTraq ID: 97314 http://www.securityfocus.com/bid/97314 https://blogs.gentoo.org/ago/2017/02/20/audiofile-multiple-ubsan-crashes/ https://github.com/antlarr/audiofile/commit/c48e4c6503f7dabd41f11d4c9c7b7f8960e7f2c0 https://github.com/mpruett/audiofile/issues/41 http://www.openwall.com/lists/oss-security/2017/03/13/9 Common Vulnerability Exposure (CVE) ID: CVE-2017-6838 https://github.com/antlarr/audiofile/commit/7d65f89defb092b63bcbc5d98349fb222ca73b3c Common Vulnerability Exposure (CVE) ID: CVE-2017-6839 https://github.com/antlarr/audiofile/commit/beacc44eb8cdf6d58717ec1a5103c5141f1b37f9
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.