vulnerability

SUSE: CVE-2018-17095: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Sep 16, 2018	Oct 28, 2018	Oct 22, 2021

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Sep 16, 2018

Added

Oct 28, 2018

Modified

Oct 22, 2021

Description

An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert.

Solutions

suse-upgrade-audiofilesuse-upgrade-audiofile-develsuse-upgrade-audiofile-devel-32bitsuse-upgrade-audiofile-docsuse-upgrade-libaudiofile1suse-upgrade-libaudiofile1-32bit

References

SUSE-SUSE-SU-2018:3506-1
SUSE-SUSE-SU-2018:3588-1
SUSE-SUSE-SU-2018:3588-2
UBUNTU-USN-3800-1
NVD-CVE-2018-17095

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report