Search for packages
| purl | pkg:deb/debian/audacity@1.3.12-6 |
| Next non-vulnerable version | 2.4.2~dfsg0-5 |
| Latest non-vulnerable version | 2.4.2~dfsg0-5 |
| Risk | 2.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-596q-e9aj-aaaj
Aliases: CVE-2016-2541 |
Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP2 file. |
Affected by 1 other vulnerability. |
|
VCID-cju4-naeb-aaac
Aliases: CVE-2016-2540 |
Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted FORMATCHUNK structure. |
Affected by 1 other vulnerability. |
|
VCID-zc3j-zz4h-aaak
Aliases: CVE-2020-11867 |
Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and play the temporary audio .au files located there. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-9bcg-1va8-aaaq | Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .gro file containing a long string. |
CVE-2009-0490
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T17:19:34.609772+00:00 | Debian Oval Importer | Fixing | VCID-9bcg-1va8-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:19:57.767381+00:00 | Debian Oval Importer | Affected by | VCID-cju4-naeb-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T12:22:24.325864+00:00 | Debian Oval Importer | Affected by | VCID-596q-e9aj-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T02:38:59.075666+00:00 | Debian Oval Importer | Affected by | VCID-zc3j-zz4h-aaak | None | 36.1.3 |
| 2025-06-21T00:42:50.739546+00:00 | Debian Oval Importer | Fixing | VCID-9bcg-1va8-aaaq | None | 36.1.3 |
| 2025-06-20T21:58:24.452827+00:00 | Debian Oval Importer | Affected by | VCID-cju4-naeb-aaac | None | 36.1.3 |
| 2025-06-20T21:18:19.727293+00:00 | Debian Oval Importer | Affected by | VCID-596q-e9aj-aaaj | None | 36.1.3 |
| 2025-06-08T10:00:40.755350+00:00 | Debian Oval Importer | Fixing | VCID-9bcg-1va8-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:14:30.986602+00:00 | Debian Oval Importer | Affected by | VCID-cju4-naeb-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:24:36.226484+00:00 | Debian Oval Importer | Affected by | VCID-596q-e9aj-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T20:03:45.829967+00:00 | Debian Oval Importer | Affected by | VCID-zc3j-zz4h-aaak | None | 36.1.0 |
| 2025-06-07T18:05:25.346981+00:00 | Debian Oval Importer | Fixing | VCID-9bcg-1va8-aaaq | None | 36.1.0 |
| 2025-06-07T15:21:52.050883+00:00 | Debian Oval Importer | Affected by | VCID-cju4-naeb-aaac | None | 36.1.0 |
| 2025-06-07T14:42:06.979141+00:00 | Debian Oval Importer | Affected by | VCID-596q-e9aj-aaaj | None | 36.1.0 |
| 2025-04-12T22:31:07.875050+00:00 | Debian Oval Importer | Affected by | VCID-zc3j-zz4h-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:43:40.941150+00:00 | Debian Oval Importer | Affected by | VCID-cju4-naeb-aaac | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:17:31.283643+00:00 | Debian Oval Importer | Fixing | VCID-9bcg-1va8-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:34:53.537077+00:00 | Debian Oval Importer | Affected by | VCID-596q-e9aj-aaaj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T08:32:57.199768+00:00 | Debian Oval Importer | Fixing | VCID-9bcg-1va8-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T04:46:42.283512+00:00 | Debian Oval Importer | Affected by | VCID-cju4-naeb-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:55:43.424467+00:00 | Debian Oval Importer | Affected by | VCID-596q-e9aj-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T18:41:11.410968+00:00 | Debian Oval Importer | Affected by | VCID-zc3j-zz4h-aaak | None | 36.0.0 |
| 2025-04-07T16:42:32.155267+00:00 | Debian Oval Importer | Fixing | VCID-9bcg-1va8-aaaq | None | 36.0.0 |
| 2025-04-07T13:53:15.523459+00:00 | Debian Oval Importer | Affected by | VCID-cju4-naeb-aaac | None | 36.0.0 |
| 2025-04-07T13:14:07.426491+00:00 | Debian Oval Importer | Affected by | VCID-596q-e9aj-aaaj | None | 36.0.0 |
| 2024-11-27T00:51:01.650284+00:00 | Debian Oval Importer | Fixing | VCID-9bcg-1va8-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-12T23:07:44.489006+00:00 | Debian Oval Importer | Fixing | VCID-9bcg-1va8-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-20T18:19:53.862757+00:00 | Debian Oval Importer | Fixing | VCID-9bcg-1va8-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |