SUSE CVE-2017-14245

An out of bounds read in the function d2alawarray in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values...

An out of bounds read in the function d2alaw_array() in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure related to mishandling of the NAN and INFINITY floating-point values.

...

SUSE SLES11 Security Update : libsndfile (SUSE-SU-2019:14008-1)

This update for libsndfile fixes the following issues : Security issues fixed : CVE-2017-17456: Prevent segmentation fault in the function d2alawarray that may have lead to a remote DoS bsc1071777. CVE-2017-17457: Prevent segmentation fault in the function d2ulawarray that may have lead to a remo...

libsndfile d2alaw_array() function out-of-bounds read vulnerability

Libsndfile is a C library for reading and writing files containing sampled sounds e.g. MS Windows WAV and Apple/SGI AIFF formats through a standard library interface. An out-of-bounds read vulnerability in the d2alawarray function in alaw.c in Libsndfile could lead to a remote denial-of-service...

CVE-2017-14245

CVE-2017-14245 affects libsndfile 1.0.28, with an out-of-bounds read in d2alaw_array() and d2ulaw_array() (ulaw.c/alaw.c). The flaw arises from mishandling NAN/INFINITY floating-point values, enabling remote denial of service or information disclosure via crafted audio files. Several connected ad...

UBUNTU-CVE-2017-14245

An out of bounds read in the function d2alawarray in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values...