SB2026051556 - openEuler update for audiofile
Published: May 15, 2026
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 vulnerabilities.
1) Null pointer dereference (CVE-ID: CVE-2018-13440)
CWE-ID: CWE-476 - NULL Pointer Dereference
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/U:Clear
The vulnerability allows a remote attacker to cause DoS condition on the target system.
The vulnerability exists in the ModuleState::setup function, as defined in the modules/ModuleState.cpp source code file due to a NULL pointer exception bug. A remote attacker can send a malicious CAF file, trigger a NULL pointer dereference condition and cause the affected application to crash.
2) Heap-based buffer overflow (CVE-ID: CVE-2018-17095)
CWE-ID: CWE-122 - Heap-based Buffer Overflow
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Amber
The vulnerability allows a local attacker to gain elevated privileges on the target system.
The vulnerability exists in the ModuleState::setup function due to a heap-based buffer overflow condition that occurs when running sfconvert. A remote attacker can trick the victim into opening or executing a specially crafted file that submits malicious input, trigger memory corruption and cause the service to crash or execute arbitrary code with elevated privileges.
Successful exploitation of the vulnerability may result in system compromise.
3) Memory leak (CVE-ID: CVE-2022-24599)
CWE-ID: CWE-401 - Missing release of memory after effective lifetime
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
The vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due memory leak within the printfileinfo() function in printinfo.c. A remote attacker can pass a specially crafted file to the application and gain access to potentially sensitive information.
Remediation
Install update from vendor's website.