CVE-2018-19801: Aubio is vulnerable to a NULL pointer dereference in new_aubio_filterbank
(updated )
aubio v0.4.0 to v0.4.8 has a NULL pointer dereference in new_aubio_filterbank via invalid n_filters.
References
- github.com/advisories/GHSA-7vvr-h4p5-m7fh
- github.com/aubio/aubio
- github.com/aubio/aubio/blob/0.4.9/ChangeLog
- github.com/pypa/advisory-database/tree/main/vulns/aubio/PYSEC-2019-163.yaml
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IYIKPYXZIWYWWNNORSKWRCFFCP6AFMRZ
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OHIRMWW4JQ6UHJK4AVBJLFRLE2TPKC2W
- nvd.nist.gov/vuln/detail/CVE-2018-19801
Detect and mitigate CVE-2018-19801 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →