The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert.

Published : 2018-07-08 16:29 Updated : 2018-10-25 10:29

CVSS Score More info
Score 4.3 / 10
Vendor Product Version URI
68k Audio File Library 0.3.6 cpe:/a:68k:audio_file_library:0.3.6
  1. 68k (1) Search CVE
    1. Audio File Library (1) Search CVE
      1. 0.3.6


ID Name Description Links
CWE-476 NULL Pointer Dereference A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit. CVE

History of changes

Date Event
2018-10-25 10:29
2018-09-05 19:32
2018-07-08 16:29