PublicDateAtUSN: 2018-07-08
Candidate: CVE-2018-13440
PublicDate: 2018-07-08 16:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-13440
 https://ubuntu.com/security/notices/USN-3800-1
Description:
 The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug
 in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker
 to cause a denial of service via a crafted caf file, as demonstrated by
 sfconvert.
Ubuntu-Description:
Notes:
 ebarretto> It looks like upstream is not active anymore, some of the open CVEs
 ebarretto> have a proposed fix on a fork.
 ebarretto> Marking as deferred for now.
Bugs:
 https://github.com/mpruett/audiofile/issues/49
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=903499
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H [6.5 MEDIUM]


Patches_audiofile:
 upstream: https://github.com/wtay/audiofile/commit/fde6d79fb8363c4a329a184ef0b107156602b225
upstream_audiofile: needs-triage
precise/esm_audiofile: DNE
trusty_audiofile: released (0.3.6-2ubuntu0.14.04.3)
trusty/esm_audiofile: released (0.3.6-2ubuntu0.14.04.3)
xenial_audiofile: ignored (end of standard support, was needed)
artful_audiofile: ignored (reached end-of-life)
bionic_audiofile: needed
cosmic_audiofile: ignored (reached end-of-life)
disco_audiofile: ignored (reached end-of-life)
eoan_audiofile: not-affected (0.3.6-5)
focal_audiofile: not-affected (0.3.6-5)
groovy_audiofile: not-affected (0.3.6-5)
hirsute_audiofile: not-affected (0.3.6-5)
impish_audiofile: not-affected (0.3.6-5)
jammy_audiofile: not-affected (0.3.6-5)
devel_audiofile: not-affected (0.3.6-5)