First published: Tue Dec 12 2017(Updated: )
A NULL pointer dereference (DoS) Vulnerability was found in the function `aubio_source_avcodec_readframe` in io/source_avcodec.c of aubio, which may lead to DoS when playing a crafted audio file.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
pip/aubio | <0.4.7 | 0.4.7 |
Aubio Aubio | =0.4.6 | |
debian/aubio | 0.4.9-4 0.4.9-4.3 0.4.9-4.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-17554 is a vulnerability that involves a NULL pointer dereference (DoS) in the function aubio_source_avcodec_readframe of the aubio library.
CVE-2017-17554 has a severity rating of 5.5 (medium).
CVE-2017-17554 affects versions 0.4.6 and prior of the aubio library.
To fix CVE-2017-17554, update aubio to version 0.4.7 or later.
You can find more information about CVE-2017-17554 on the NIST National Vulnerability Database (NVD) website.