QwikSec

Security Database

CVE

CWE

Training

CVE-2017-7741

Published: Apr 12, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation (with write memory access) via a specially crafted FLAC file during a resample attempt, a similar issue to CVE-2017-7585.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/erikd/libsndfile/commit/60b234301adf258786d8b90be5c1d437fc8799e0

x_refsource_MISC

https://blogs.gentoo.org/ago/2017/04/11/libsndfile-invalid-memory-read-and-invalid-memory-write-in/

x_refsource_MISC

vendor-advisory

x_refsource_GENTOO

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.