Vulnerabilities affecting this package (0)
| Vulnerability |
Summary |
Fixed by |
|
This package is not known to be affected by vulnerabilities.
|
Vulnerabilities fixed by this package (8)
| Vulnerability |
Summary |
Aliases |
|
VCID-2u5b-cbtr-xqa1
|
Audacity uses temporary files in an insecure manner, allowing for a symlink
attack.
|
CVE-2007-6061
|
|
VCID-4e8r-fvv6-f7f2
|
Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP2 file.
|
CVE-2016-2541
|
|
VCID-4zzy-q5zp-jkgm
|
A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM.
|
CVE-2009-3720
|
|
VCID-c1k4-7mhy-73gp
|
A boundary error in Audacity allows for the execution of arbitrary code.
|
CVE-2009-0490
|
|
VCID-nxc6-nv2g-17g6
|
Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted FORMATCHUNK structure.
|
CVE-2016-2540
|
|
VCID-qtav-hqnd-b7fa
|
A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM.
|
CVE-2009-3560
|
|
VCID-tq6d-24wr-t7cx
|
Audacity 2.1.2 through 2.3.2 is vulnerable to Dll HIjacking in the avformat-55.dll resulting arbitrary code execution.
|
CVE-2017-1000010
|
|
VCID-veb9-7659-wfg7
|
Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and play the temporary audio .au files located there.
|
CVE-2020-11867
|