First published: Wed Apr 12 2017(Updated: )
In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation (with write memory access) via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Libsndfile Project Libsndfile | <=1.0.27 |
https://blogs.gentoo.org/ago/2017/04/11/libsndfile-invalid-memory-read-and-invalid-memory-write-in/
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.