CVE-2018-19758

Опубликовано: 30 нояб. 2018

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4.3

CVSS3: 6.5

Описание

There is a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service.

Релиз	Статус	Примечание
bionic	released	1.0.28-4ubuntu0.18.04.1
cosmic	released	1.0.28-4ubuntu0.18.10.1
devel	not-affected	1.0.28-6
disco	not-affected	1.0.28-6
eoan	not-affected	1.0.28-6
esm-infra-legacy/trusty	not-affected	1.0.25-7ubuntu2.2+esm1
esm-infra/bionic	not-affected	1.0.28-4ubuntu0.18.04.1
esm-infra/focal	not-affected	1.0.28-6
esm-infra/xenial	not-affected	1.0.25-10ubuntu0.16.04.2
focal	not-affected	1.0.28-6

Показывать по

Ссылки на источники

EPSS

Процентиль: 74%

0.00848

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-19758

CVSS3: 3.3

redhat

почти 7 лет назад

There is a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service.

CVE-2018-19758

CVSS3: 6.5

nvd

больше 6 лет назад

There is a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service.

CVE-2018-19758

CVSS3: 6.5

msrc

больше 4 лет назад

Описание отсутствует

CVE-2018-19758

CVSS3: 6.5

debian

больше 6 лет назад

There is a heap-based buffer over-read at wav.c in wav_write_header in ...

GHSA-4jqr-pr36-m28w

CVSS3: 6.5

github

больше 3 лет назад

There is a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service.

EPSS

Процентиль: 74%

0.00848

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2018-19758

Описание

Пакет libsndfile

Ссылки на источники

Связанные уязвимости