7 matches found
CVE-2009-1788
The CVE-2009-1788 issue is a heap-based buffer overflow in libsndfile’s voc_read_header function (versions 1.0.15–1.0.19). It can be triggered by a malformed VOC header, allowing a remote attacker to cause an application crash (denial of service) and potentially execute arbitrary code via a craft...
CVE-2015-7805
CVE-2015-7805 is a heap-based buffer overflow in libsndfile 1.0.25 triggered by the AIFF header field headindex, leading to a remote impact described as unspecified in the sources. The vulnerability affects the libsndfile library used for reading/writing audio files, with public disclosures tied ...
CVE-2009-0186
CVE-2009-0186 concerns libsndfile 1.0.18 and its CAF file parser. The vulnerability is an integer overflow in CAF chunk handling that can trigger a heap-based buffer overflow, allowing context-dependent attackers to potentially execute arbitrary code via crafted CAF files. The issue was publicly ...
CVE-2009-1791
Technical details about CVE-2009-1791 are not publicly available in the provided connected documents. Monitor for updates.
CVE-2011-2696
CVE-2011-2696: Integer overflow in libsndfile (before 1.0.25) during parsing of Paris Audio Format (PAF) files leads to a heap-based buffer overflow. This can cause an application crash or remote code execution when a crafted PAF file is opened. Public reports reference patches in various Linux d...
CVE-2007-4974
Technical details about CVE-2007-4974 are not publicly provided in the connected documents. No concrete information on affected versions, impact or fixes is included here; monitor for official updates.
CVE-2009-4835
CVE-2009-4835 affects libsndfile 1.0.20, where six internal functions (htk_read_header, alaw_init, ulaw_init, pcm_init, float32_init, sds_read_header) can trigger a divide-by-zero and cause denial of service when processing a crafted audio file. Public records reference this alongside fixes for l...