pkg:Debian/libsndfile
58 total CVEsCRITICAL3HIGH21MEDIUM18
✅ Check your installed version
All known vulnerabilities
- from 0, < 1.0.25-9.1+deb7u4
- from 0, < 1.0.27-3+deb9u3
- from 0, < 1.0.28-3
- from 0, < 1.0.28-6+deb10u1
- from 0, < 1.0.31-2
- from 0, < 1.0.27-3+deb9u2
- HIGH8.8CVE-2018-13139A stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (applicat…from 0, < 1.0.28-5
- from 0, < 1.0.28-1
- from 0, < 1.0.25-9.1+deb7u3
- from 0, < 1.0.25-9.1+deb7u2
- from 0, < 1.0.27-3
- from 0, < 1.0.28-5
- HIGH8.1CVE-2017-14246An out of bounds read in the function d2ulaw_array() in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosu…from 0, < 1.0.28-5
- from 0, < 1.0.27-3+deb9u1
- from 0, < 1.0.25-9.1+deb8u2
- from 0, < 1.0.28-5
- from 0, < 1.0.31-2+deb11u1
- from 0, < 1.0.31-2+deb11u1
- HIGH7.8CVE-2022-33064An off-by-one error in function wav_read_header in src/wav.c in Libsndfile 1.1.0, results in a write out of bound, which allows an attacker…from 0
- from 0
- HIGH7.5CVE-2025-52194A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio f…from 0
- from 0, < 1.0.31-2+deb11u2
- from 0, < 1.0.28-6+deb10u2
- from 0, < 1.0.31-2+deb11u2
- MEDIUM6.5CVE-2024-50613libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in mpeg_l3_encode.c mpeg_l3_encoder_close.from 0
- from 0, < 1.0.28-5
- from 0, < 1.0.25-9.1+deb8u3
- from 0, < 1.0.28-5
- from 0, < 1.0.28-5
- MEDIUM6.5CVE-2017-16942In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function wav_w64_read_fmt_chunk() in wav_w64.c, which may lead…from 0, < 1.0.27-1
- MEDIUM6.5CVE-2017-14634In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a cra…from 0, < 1.0.28-5
- MEDIUM6.5CVE-2017-8365The i2les_array function in pcm.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (buffer over-read and applicati…from 0, < 1.0.27-3
- MEDIUM6.5CVE-2017-8363The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (heap-based buffer over-r…from 0, < 1.0.27-3
- MEDIUM6.5CVE-2017-8362The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (invalid read and applica…from 0, < 1.0.27-3
- MEDIUM5.5CVE-2024-50612libsndfile through 1.2.2 has an ogg_vorbis.c vorbis_analysis_wrote out-of-bounds read.from 0, < 1.0.31-2+deb11u1
- from 0, < 1.0.25-9.1+deb8u4
- from 0, < 1.0.28-6
- MEDIUM5.5CVE-2017-7742In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation (wit…from 0, < 1.0.27-3
- MEDIUM5.5CVE-2017-7741In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation (wit…from 0, < 1.0.27-2
- MEDIUM5.5CVE-2017-7586In libsndfile before 1.0.28, an error in the "header_read()" function (common.c) when handling ID3 tags can be exploited to cause a stack-b…from 0, < 1.0.27-2
- MEDIUM5.5CVE-2017-7585In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a stack-based buffer overflow…from 0, < 1.0.27-2
- MEDIUM5.3CVE-2025-56226Libsndfile <=1.2.2 contains a memory leak vulnerability in the mpeg_l3_encoder_init() function within the mpeg_l3_encode.c file.from 0
- —CVE-2014-9756The psf_fwrite function in file_io.c in libsndfile allows attackers to cause a denial of service (divide-by-zero error and application cras…from 0, < 1.0.25-10
- —CVE-2015-7805Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in…from 0, < 1.0.25-10
- from 0, < 1.0.21-3+squeeze2
- from 0, < 1.0.25-9.1
- from 0, < 1.0.25-9.1+deb7u1
- from 0, < 1.0.25-1
- from 0, < 1.0.21-3+squeeze1
- —CVE-2009-4835The (1) htk_read_header, (2) alaw_init, (3) ulaw_init, (4) pcm_init, (5) float32_init, and (6) sds_read_header functions in libsndfile 1.0.…from 0, < 1.0.21-3
- —CVE-2009-1791Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media progra…from 0, < 1.0.20-1
- from 0, < 1.0.20-1
- from 0, < 1.0.16-2+etch2
- from 0, < 1.0.16-2+etch1
- from 0, < 1.0.19-1
- from 0, < 1.0.18-2+squeeze1
- from 0, < 1.0.16-2
- from 0, < 1.0.17-4