Описание
An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file (via tricking a user to open or otherwise) to an application linked with libsndfile and using the FLAC codec, could trigger an out-of-bounds read that would most likely cause a crash but could potentially leak memory information that could be used in further exploitation of other flaws.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | not-affected | 1.2.0-1 |
| esm-infra-legacy/trusty | released | 1.0.25-7ubuntu2.2+esm4 |
| esm-infra/bionic | released | 1.0.28-4ubuntu0.18.04.2+esm2 |
| esm-infra/focal | not-affected | 1.0.28-7ubuntu0.3 |
| esm-infra/xenial | released | 1.0.25-10ubuntu0.16.04.3+esm2 |
| focal | released | 1.0.28-7ubuntu0.3 |
| hirsute | ignored | end of life |
| impish | ignored | end of life |
| jammy | released | 1.0.31-2ubuntu0.2 |
Показывать по
5.8 Medium
CVSS2
7.1 High
CVSS3
Связанные уязвимости
An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file (via tricking a user to open or otherwise) to an application linked with libsndfile and using the FLAC codec, could trigger an out-of-bounds read that would most likely cause a crash but could potentially leak memory information that could be used in further exploitation of other flaws.
An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file (via tricking a user to open or otherwise) to an application linked with libsndfile and using the FLAC codec, could trigger an out-of-bounds read that would most likely cause a crash but could potentially leak memory information that could be used in further exploitation of other flaws.
An out-of-bounds read flaw was found in libsndfile's FLAC codec functi ...
5.8 Medium
CVSS2
7.1 High
CVSS3