Search for packages
| purl | pkg:deb/debian/audacity@1.3.5-2%2Blenny1 |
| Next non-vulnerable version | 2.4.2~dfsg0-5 |
| Latest non-vulnerable version | 2.4.2~dfsg0-5 |
| Risk | 2.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-bgwm-jm76-e7am
Aliases: CVE-2009-0490 |
audacity: stack-based buffer overflow |
Affected by 3 other vulnerabilities. |
|
VCID-caa3-u7t9-9qg8
Aliases: CVE-2020-11867 |
Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and play the temporary audio .au files located there. |
Affected by 0 other vulnerabilities. |
|
VCID-nmht-hsfp-eqhm
Aliases: CVE-2016-2540 |
Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted FORMATCHUNK structure. |
Affected by 1 other vulnerability. |
|
VCID-r5j4-mjam-qycb
Aliases: CVE-2016-2541 |
Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP2 file. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-cjbk-v93c-hyav | A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM. |
CVE-2009-3560
|
| VCID-decx-ng47-vfcr | A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM. |
CVE-2009-3720
|
| VCID-wnvx-ahf8-9uhe | Audacity insecure temporary file handling |
CVE-2007-6061
|