CVE-2017-16942

Опубликовано: 25 нояб. 2017

Источник: ubuntu

Приоритет: negligible

EPSS Низкий

CVSS2: 4.3

CVSS3: 6.5

Описание

In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function wav_w64_read_fmt_chunk() in wav_w64.c, which may lead to DoS when playing a crafted audio file.

Релиз	Статус	Примечание
artful	not-affected	1.0.28-4
bionic	not-affected
cosmic	not-affected
devel	not-affected
disco	not-affected
eoan	not-affected
esm-infra-legacy/trusty	released	1.0.25-7ubuntu2.2+esm1
esm-infra/bionic	not-affected
esm-infra/focal	not-affected
esm-infra/xenial	released	1.0.25-10ubuntu0.16.04.2

Показывать по

Ссылки на источники

EPSS

Процентиль: 51%

0.00284

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-16942

CVSS3: 4.3

redhat

около 8 лет назад

In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function wav_w64_read_fmt_chunk() in wav_w64.c, which may lead to DoS when playing a crafted audio file.

CVE-2017-16942

CVSS3: 6.5

nvd

около 8 лет назад

In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function wav_w64_read_fmt_chunk() in wav_w64.c, which may lead to DoS when playing a crafted audio file.

CVE-2017-16942

CVSS3: 6.5

debian

около 8 лет назад

In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists ...

GHSA-m7qj-97rw-rxp3

CVSS3: 6.5

github

больше 3 лет назад

In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function wav_w64_read_fmt_chunk() in wav_w64.c, which may lead to DoS when playing a crafted audio file.

SUSE-SU-2018:0351-1

suse-cvrf

около 8 лет назад

Recommended update for libsndfile

EPSS

Процентиль: 51%

0.00284

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2017-16942

Описание

Пакет libsndfile

Ссылки на источники

Связанные уязвимости