CVE-2017-6892

Опубликовано: 12 июн. 2017

Источник: ubuntu

Приоритет: low

CVSS2: 6.8

CVSS3: 8.8

Описание

In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" function (aiff.c) can be exploited to cause an out-of-bounds read memory access via a specially crafted AIFF file.

Релиз	Статус	Примечание
artful	not-affected	1.0.28-3
bionic	not-affected	1.0.28-3
cosmic	not-affected	1.0.28-3
devel	not-affected	1.0.28-3
disco	not-affected	1.0.28-3
eoan	not-affected	1.0.28-3
esm-infra-legacy/trusty	released	1.0.25-7ubuntu2.2+esm1
esm-infra/bionic	not-affected	1.0.28-3
esm-infra/focal	not-affected	1.0.28-3
esm-infra/xenial	released	1.0.25-10ubuntu0.16.04.2

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2017-6892

CVSS3: 4.4

redhat

больше 8 лет назад

In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" function (aiff.c) can be exploited to cause an out-of-bounds read memory access via a specially crafted AIFF file.

CVE-2017-6892

CVSS3: 8.8

nvd

больше 8 лет назад

In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" function (aiff.c) can be exploited to cause an out-of-bounds read memory access via a specially crafted AIFF file.

CVE-2017-6892

CVSS3: 8.8

msrc

около 5 лет назад

Описание отсутствует

CVE-2017-6892

CVSS3: 8.8

debian

больше 8 лет назад

In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" fu ...

GHSA-7fc7-mjc4-7mmh

CVSS3: 8.8

github

больше 3 лет назад

In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" function (aiff.c) can be exploited to cause an out-of-bounds read memory access via a specially crafted AIFF file.

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2017-6892

Описание

Пакет libsndfile

Ссылки на источники

Связанные уязвимости