Search for packages
Package details: pkg:deb/debian/audacity@2.1.2-2
purl pkg:deb/debian/audacity@2.1.2-2
Next non-vulnerable version 2.4.2~dfsg0-5
Latest non-vulnerable version 2.4.2~dfsg0-5
Risk 1.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-zc3j-zz4h-aaak
Aliases:
CVE-2020-11867
Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and play the temporary audio .au files located there.
2.4.2~dfsg0-5
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-596q-e9aj-aaaj Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP2 file. CVE-2016-2541
VCID-cju4-naeb-aaac Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted FORMATCHUNK structure. CVE-2016-2540

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T13:19:57.773787+00:00 Debian Oval Importer Fixing VCID-cju4-naeb-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:22:24.330654+00:00 Debian Oval Importer Fixing VCID-596q-e9aj-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T09:31:46.102192+00:00 Debian Importer Affected by VCID-zc3j-zz4h-aaak None 36.1.3
2025-06-21T02:38:59.081589+00:00 Debian Oval Importer Affected by VCID-zc3j-zz4h-aaak None 36.1.3
2025-06-20T21:58:24.459976+00:00 Debian Oval Importer Fixing VCID-cju4-naeb-aaac None 36.1.3
2025-06-20T21:18:19.732524+00:00 Debian Oval Importer Fixing VCID-596q-e9aj-aaaj None 36.1.3
2025-06-08T06:14:30.991045+00:00 Debian Oval Importer Fixing VCID-cju4-naeb-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:24:36.231010+00:00 Debian Oval Importer Fixing VCID-596q-e9aj-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T20:03:45.834912+00:00 Debian Oval Importer Affected by VCID-zc3j-zz4h-aaak None 36.1.0
2025-06-07T15:21:52.055407+00:00 Debian Oval Importer Fixing VCID-cju4-naeb-aaac None 36.1.0
2025-06-07T14:42:06.983715+00:00 Debian Oval Importer Fixing VCID-596q-e9aj-aaaj None 36.1.0
2025-04-12T22:31:07.890162+00:00 Debian Oval Importer Affected by VCID-zc3j-zz4h-aaak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T21:43:40.956182+00:00 Debian Oval Importer Fixing VCID-cju4-naeb-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:34:53.552147+00:00 Debian Oval Importer Fixing VCID-596q-e9aj-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T04:46:42.298098+00:00 Debian Oval Importer Fixing VCID-cju4-naeb-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:55:43.438899+00:00 Debian Oval Importer Fixing VCID-596q-e9aj-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T18:41:11.426552+00:00 Debian Oval Importer Affected by VCID-zc3j-zz4h-aaak None 36.0.0
2025-04-07T13:53:15.539741+00:00 Debian Oval Importer Fixing VCID-cju4-naeb-aaac None 36.0.0
2025-04-07T13:14:07.445372+00:00 Debian Oval Importer Fixing VCID-596q-e9aj-aaaj None 36.0.0
2025-04-05T06:48:39.711855+00:00 Debian Importer Affected by VCID-zc3j-zz4h-aaak None 36.0.0
2025-02-19T12:03:48.491921+00:00 Debian Importer Affected by VCID-zc3j-zz4h-aaak None 35.1.0
2024-04-24T17:09:53.298353+00:00 Debian Importer Affected by VCID-zc3j-zz4h-aaak None 34.0.0rc4
2024-01-10T19:06:07.162122+00:00 Debian Importer Affected by VCID-zc3j-zz4h-aaak None 34.0.0rc2
2024-01-04T08:34:41.207215+00:00 Debian Importer Affected by VCID-zc3j-zz4h-aaak None 34.0.0rc1