5 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-33064
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An off-by-one error in function wavreadheader in src/wav.c in Libsndfile 1.1.0, results in a write out of bound, which allows an attacker to execute arbitrary...
Medium: libsndfile
Issue Overview: An off-by-one error in function wavreadheader in src/wav.c in Libsndfile 1.1.0, results in a write out of bound, which allows an attacker to execute arbitrary code, Denial of Service or other unspecified impacts. CVE-2022-33064 Affected Packages: libsndfile Issue Correction: Run d...
Amazon Linux 2023 : libsndfile, libsndfile-devel, libsndfile-utils (ALAS2023-2024-572)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-572 advisory. An off-by-one error in function wavreadheader in src/wav.c in Libsndfile 1.1.0, results in a write out of bound, which allows an attacker to execute arbitrary code, Denial of Service or other unspecifie...
CVE-2022-33064 affecting package libsndfile for versions less than 1.2.2-1
CVE-2022-33064 affecting package libsndfile for versions less than 1.2.2-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-33064
CVE-2022-33064 stems from an off-by-one error in function wav_read_header in src/wav.c of Libsndfile 1.1.0, causing a write-out-of-bounds condition. Multiple sources (NVD entry and vendor advisories) describe this vulnerability as enabling arbitrary code execution, Denial of Service, or other uns...