Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:29302
HistoryFeb 09, 2021 - 3:04 a.m.

Arbitrary Code Execution

2021-02-0903:04:27
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
18
buffer overflow
segmentation fault
heap-based
unallocated memory block
libmysofa

EPSS

0.001

Percentile

42.3%

libmysofa.so is vulnerable to arbitrary code execution. The heap-based buffer overflow caused by a segmentation fault in loudness() in libmysofa/src/hrtf/tools.c allows arbitrary code execution through access to unallocated memory block.

Affected configurations

Vulners
Node
-libmysofa.soRange1.0.0-1.1-1.epel8.playground.x86_64.debug
VendorProductVersionCPE
-libmysofa.so*cpe:2.3:a:-:libmysofa.so:*:*:*:*:*:*:*:*