CVE-2024-50612
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-50612
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50612.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-50612
- Related
- Published
- 2024-10-27T22:15:03Z
- Modified
- 2025-01-01T13:46:35.014771Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
libsndfile through 1.2.2 has an oggvorbis.c vorbisanalysis_wrote out-of-bounds read.
- References
Affected packages
Alpine:v3.18 / libsndfile
Package
- Name
- libsndfile
- Purl
- pkg:apk/alpine/libsndfile?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.2.2-r1
Affected versions
1.*
1.0.19-r0
1.0.20-r0
1.0.21-r0
1.0.21-r1
1.0.21-r2
1.0.21-r3
1.0.22-r0
1.0.23-r0
1.0.23-r1
1.0.24-r0
1.0.24-r1
1.0.25-r0
1.0.25-r1
1.0.25-r2
1.0.25-r3
1.0.26-r0
1.0.27-r0
1.0.28-r0
1.0.28-r1
1.0.28-r2
1.0.28-r3
1.0.28-r4
1.0.28-r5
1.0.28-r6
1.0.28-r7
1.0.28-r8
1.0.29-r0
1.0.29-r1
1.0.31-r0
1.0.31-r1
1.1.0-r0
1.1.0-r1
1.1.0-r2
1.1.0-r3
1.2.0-r0
1.2.0-r1
1.2.0-r2
1.2.2-r0
Alpine:v3.19 / libsndfile
Package
- Name
- libsndfile
- Purl
- pkg:apk/alpine/libsndfile?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.2.2-r1
Affected versions
1.*
1.0.19-r0
1.0.20-r0
1.0.21-r0
1.0.21-r1
1.0.21-r2
1.0.21-r3
1.0.22-r0
1.0.23-r0
1.0.23-r1
1.0.24-r0
1.0.24-r1
1.0.25-r0
1.0.25-r1
1.0.25-r2
1.0.25-r3
1.0.26-r0
1.0.27-r0
1.0.28-r0
1.0.28-r1
1.0.28-r2
1.0.28-r3
1.0.28-r4
1.0.28-r5
1.0.28-r6
1.0.28-r7
1.0.28-r8
1.0.29-r0
1.0.29-r1
1.0.31-r0
1.0.31-r1
1.1.0-r0
1.1.0-r1
1.1.0-r2
1.1.0-r3
1.2.0-r0
1.2.0-r1
1.2.0-r2
1.2.0-r3
1.2.2-r0
Alpine:v3.20 / libsndfile
Package
- Name
- libsndfile
- Purl
- pkg:apk/alpine/libsndfile?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.2.2-r1
Affected versions
1.*
1.0.19-r0
1.0.20-r0
1.0.21-r0
1.0.21-r1
1.0.21-r2
1.0.21-r3
1.0.22-r0
1.0.23-r0
1.0.23-r1
1.0.24-r0
1.0.24-r1
1.0.25-r0
1.0.25-r1
1.0.25-r2
1.0.25-r3
1.0.26-r0
1.0.27-r0
1.0.28-r0
1.0.28-r1
1.0.28-r2
1.0.28-r3
1.0.28-r4
1.0.28-r5
1.0.28-r6
1.0.28-r7
1.0.28-r8
1.0.29-r0
1.0.29-r1
1.0.31-r0
1.0.31-r1
1.1.0-r0
1.1.0-r1
1.1.0-r2
1.1.0-r3
1.2.0-r0
1.2.0-r1
1.2.0-r2
1.2.0-r3
1.2.2-r0
Alpine:v3.21 / libsndfile
Package
- Name
- libsndfile
- Purl
- pkg:apk/alpine/libsndfile?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.2.2-r2
Affected versions
1.*
1.0.19-r0
1.0.20-r0
1.0.21-r0
1.0.21-r1
1.0.21-r2
1.0.21-r3
1.0.22-r0
1.0.23-r0
1.0.23-r1
1.0.24-r0
1.0.24-r1
1.0.25-r0
1.0.25-r1
1.0.25-r2
1.0.25-r3
1.0.26-r0
1.0.27-r0
1.0.28-r0
1.0.28-r1
1.0.28-r2
1.0.28-r3
1.0.28-r4
1.0.28-r5
1.0.28-r6
1.0.28-r7
1.0.28-r8
1.0.29-r0
1.0.29-r1
1.0.31-r0
1.0.31-r1
1.1.0-r0
1.1.0-r1
1.1.0-r2
1.1.0-r3
1.2.0-r0
1.2.0-r1
1.2.0-r2
1.2.0-r3
1.2.2-r0
1.2.2-r1
Debian:11 / libsndfile
Package
- Name
- libsndfile
- Purl
- pkg:deb/debian/libsndfile?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Debian:12 / libsndfile
Package
- Name
- libsndfile
- Purl
- pkg:deb/debian/libsndfile?arch=source
Debian:13 / libsndfile
Package
- Name
- libsndfile
- Purl
- pkg:deb/debian/libsndfile?arch=source