Unrated severityNVD Advisory· Published Feb 22, 2022· Updated Nov 3, 2025
CVE-2022-24599
CVE-2022-24599
Description
In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn't use zero bytes to truncate the data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- autofile/Audio File Librarydescription
- Range: = 0.3.6
- osv-coords5 versionspkg:rpm/opensuse/audiofile&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/audiofile&distro=openSUSE%20Tumbleweedpkg:rpm/suse/audiofile&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP6pkg:rpm/suse/audiofile&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP7pkg:rpm/suse/audiofile&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5
< 0.3.6-150000.3.12.1+ 4 more
- (no CPE)range: < 0.3.6-150000.3.12.1
- (no CPE)range: < 0.3.6-15.1
- (no CPE)range: < 0.3.6-150000.3.12.1
- (no CPE)range: < 0.3.6-150000.3.12.1
- (no CPE)range: < 0.3.6-11.10.1
Patches
Vulnerability mechanics
References
5- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4JXZ6QAMA3TSRY6GUZRY3WTHR7P5TPH/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WTETOUJNRR75REYJZTBGF6TAJZYTMXUY/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZPG27YKICLIWUFOPVUOAFAZGOX4BNHY/mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2023/11/msg00006.htmlmitremailing-list
- github.com/mpruett/audiofile/issues/60mitre
News mentions
0No linked articles in our index yet.