CVE-2017-14634

Опубликовано: 21 сент. 2017

Источник: ubuntu

Приоритет: negligible

EPSS Низкий

CVSS2: 4.3

CVSS3: 6.5

Описание

In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	released	1.0.28-4ubuntu0.18.04.1
cosmic	released	1.0.28-4ubuntu0.18.10.1
devel	not-affected	1.0.28-6
disco	not-affected	1.0.28-6
eoan	not-affected	1.0.28-6
esm-infra-legacy/trusty	released	1.0.25-7ubuntu2.2+esm1
esm-infra/bionic	released	1.0.28-4ubuntu0.18.04.1
esm-infra/focal	not-affected	1.0.28-6
esm-infra/xenial	released	1.0.25-10ubuntu0.16.04.2

Показывать по

Ссылки на источники

EPSS

Процентиль: 78%

0.01154

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-14634

CVSS3: 3.3

redhat

больше 8 лет назад

In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.

CVE-2017-14634

CVSS3: 6.5

nvd

больше 8 лет назад

In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.

CVE-2017-14634

CVSS3: 6.5

msrc

около 5 лет назад

Описание отсутствует

CVE-2017-14634

CVSS3: 6.5

debian

больше 8 лет назад

In libsndfile 1.0.28, a divide-by-zero error exists in the function do ...

GHSA-wqmq-9gvf-cgxr

CVSS3: 6.5

github

больше 3 лет назад

In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.

EPSS

Процентиль: 78%

0.01154

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2017-14634

Описание

Пакет libsndfile

Ссылки на источники

Связанные уязвимости