Описание
The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert.
Отчет
Red Hat Product Security has rated this issue as having a security impact of Low, and a future update may address this flaw.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | audiofile | Not affected | ||
| Red Hat Enterprise Linux 6 | audiofile | Not affected | ||
| Red Hat Enterprise Linux 8 | audiofile | Will not fix | ||
| Red Hat Enterprise Linux 7 | audiofile | Fixed | RHSA-2020:3877 | 29.09.2020 |
Показывать по
Дополнительная информация
Статус:
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert.
The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by sfconvert.
The audiofile Audio File Library 0.3.6 has a NULL pointer dereference ...
EPSS
5.3 Medium
CVSS3