CVE-2018-14523
published 2018-07-23CVE-2018-14523: An issue was discovered in aubio 0.4.6. A buffer over-read can occur in new_aubio_pitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes.
high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
An issue was discovered in aubio 0.4.6. A buffer over-read can occur in new_aubio_pitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| aubio | aubio | — | — |
| aubio | aubio | >= 0 < 0.4.6-1 | 0.4.6-1 |
| aubio | aubio | >= 0 < 0.4.6-1 | 0.4.6-1 |
| aubio | aubio | >= 0 < 0.4.6-1 | 0.4.6-1 |
| aubio | aubio | >= 0 < 0.4.6-1 | 0.4.6-1 |
| aubio | aubio | >= 0 < 0.4.7 | 0.4.7 |
| debian | aubio | < aubio 0.4.6-1 (bookworm) | aubio 0.4.6-1 (bookworm) |
| opensuse | leap | — | — |
| opensuse | leap | — | — |
| suse | linux_enterprise | — | — |
CVSS provenance
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH