PT-2019-2965 · Unknown+4 · Audio File Library+4

Cuanduo

Publicado

2019-07-01

Atualizado

2026-03-27

CVE-2019-13147

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Audio File Library versions 0.3.6

Description The issue is related to a NULL pointer dereference bug in the ulaw2linear buf function in G711.cpp within the libmodules.a library. This bug allows an attacker to cause a denial of service via a crafted file. The exploitation of this bug can enable a remote attacker to disrupt service using a specially created file.

Recommendations For Audio File Library version 0.3.6, consider disabling the ulaw2linear buf function in G711.cpp as a temporary workaround to minimize the risk of exploitation until a patch is available.

Exploit

Correção

DoS

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

AZL-43801

AZL-44760

BDU:2019-02941

CVE-2019-13147

DLA-3650-1

DLA-4255-1

MGASA-2023-0347

OESA-2026-1782

OESA-2026-1783

OESA-2026-1784

OESA-2026-1785

OESA-2026-1786

OPENSUSE-SU-2025:15150-1

OPENSUSE-SU-2025_1559-1

SUSE-SU-2025:01559-1

SUSE-SU-2025:02283-1

SUSE-SU-2025:1559-1

SUSE-SU-2025_01559-1

SUSE-SU-2025_02283-1

SUSE-SU-2025_1559-1

USN-6558-1

Produtos afetados

Audio File Library

Debian

Linuxmint

Suse

Ubuntu

PT-2019-2965 · Unknown+4 · Audio File Library+4

CVE-2019-13147

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 59