CVE-2016-2541

Published: 7 February 2018

Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP2 file.

Priority

CVSS 3 base score: 5.5

Status

Package	Release	Status
audacity Launchpad, Ubuntu, Debian	artful	Not vulnerable (2.1.2-2)
	bionic	Not vulnerable
	cosmic	Not vulnerable
	precise	Does not exist
	trusty	Does not exist (trusty was not-affected [code not present])
	upstream	Released (2.1.2-1)
	xenial	Not vulnerable (2.1.2-1)

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.