CVEs affecting projects tracked on Release Alert, from NVD & OSV.
CVE-2007-6061 — MEDIUM severity vulnerability | Release Alert
CVE-2007-6061
5
MEDIUMCVSS v2
Published
November 20, 2007
Affected
1 project
Assigned by
MITRE
Severity scale
010
Description
Audacity 1.3.2 creates a temporary directory with a predictable name without checking for previous existence of that directory, which allows local users to cause a denial of service (recording deadlock) by creating the directory before Audacity is run. NOTE: this issue can be leveraged to delete arbitrary files or directories via a symlink attack.
ChocolateyAudacity is free, open source, cross-platform software for recording and editing sounds.
## Features
- Record live audio.
- Convert tapes and records into digital recordings or CDs.
- Edit Ogg Vorbis, MP3, WAV or AIFF sound files.
- Cut, copy, splice or mix sounds together.
- Change the speed or pitch of a recording.
- Add new effects with LADSPA plug-ins.
- And more! See [full list of features](https://www.audacityteam.org/about/features).
## Notes
**If the package is out of date please check [Version History](#versionhistory) for the latest submitted version. If you have a question, please ask it in [Chocolatey Community Package Discussions](https://github.com/chocolatey-community/chocolatey-packages/discussions) or raise an issue on the [Chocolatey Community Packages Repository](https://github.com/chocolatey-community/chocolatey-packages/issues) if you have problems with the package. Disqus comments will generally not be responded to.**