CVE-2018-19432

Опубликовано: 22 нояб. 2018

Источник: redhat

CVSS3: 4.7

EPSS Низкий

Описание

An issue was discovered in libsndfile 1.0.28. There is a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service.

Отчет

This issue did not affect the versions of libsndfile as shipped with Red Hat Enterprise Linux 6. This issue affects the versions of libsndfile as shipped with Red Hat Enterprise Linux 7.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	libsndfile	Not affected
Red Hat Enterprise Linux 7	libsndfile	Fix deferred
Red Hat Enterprise Linux 8	libsndfile	Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-119

https://bugzilla.redhat.com/show_bug.cgi?id=1652566libsndfile: OOB read in sf_write_int in sndfile.c

EPSS

Процентиль: 76%

0.00965

Низкий

4.7 Medium

CVSS3

Связанные уязвимости

CVE-2018-19432

CVSS3: 6.5

ubuntu

около 7 лет назад

An issue was discovered in libsndfile 1.0.28. There is a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service.

CVE-2018-19432

CVSS3: 6.5

nvd

около 7 лет назад

An issue was discovered in libsndfile 1.0.28. There is a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service.

CVE-2018-19432

CVSS3: 6.5

msrc

около 5 лет назад

Описание отсутствует

CVE-2018-19432

CVSS3: 6.5

debian

около 7 лет назад

An issue was discovered in libsndfile 1.0.28. There is a NULL pointer ...

GHSA-qcq5-35c7-7hvw

CVSS3: 6.5

github

больше 3 лет назад

An issue was discovered in libsndfile 1.0.28. There is a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service.

EPSS

Процентиль: 76%

0.00965

Низкий

4.7 Medium

CVSS3