CVE-2019-13147

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Audio File Library versions 0.3.6

Description The issue is related to a NULL pointer dereference bug in the ulaw2linear buf function in G711.cpp within the libmodules.a library. This bug allows an attacker to cause a denial of service via a crafted file. The exploitation of this bug can enable a remote attacker to disrupt service using a specially created file.

Recommendations For Audio File Library version 0.3.6, consider disabling the ulaw2linear buf function in G711.cpp as a temporary workaround to minimize the risk of exploitation until a patch is available.

Exploit

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

AZL-43801

AZL-44760

BDU:2019-02941

CVE-2019-13147

DLA-3650-1

DLA-4255-1

MGASA-2023-0347

OESA-2026-1782

OESA-2026-1783

OESA-2026-1784

OESA-2026-1785

OESA-2026-1786

OPENSUSE-SU-2025:15150-1

OPENSUSE-SU-2025_1559-1

SUSE-SU-2025:01559-1

SUSE-SU-2025:02283-1

SUSE-SU-2025:1559-1

SUSE-SU-2025_01559-1

SUSE-SU-2025_02283-1

SUSE-SU-2025_1559-1

USN-6558-1

Affected Products

Audio File Library

Debian

Linuxmint

Suse

Ubuntu

CVE-2019-13147

Weakness Enumeration

Related Identifiers

Affected Products

References · 59