An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulaw_array in ulaw.c that will lead to a denial of service.
References
Link | Resource |
---|---|
https://github.com/erikd/libsndfile/issues/429 | Exploit Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2018/12/msg00016.html | Mailing List Third Party Advisory |
https://usn.ubuntu.com/4013-1/ | |
https://lists.debian.org/debian-lts-announce/2020/10/msg00030.html |
Information
Published : 2018-11-29 00:29
Updated : 2020-10-29 12:15
NVD link : CVE-2018-19661
Mitre link : CVE-2018-19661
JSON object : View
CWE
CWE-125
Out-of-bounds Read
Products Affected
debian
- debian_linux
libsndfile_project
- libsndfile