[3.7] libsndfile: Heap-based Buffer Overflow (CVE-2017-12562)
Heap-based Buffer Overflow in the psf_binheader_writef function in
common.c in libsndfile through 1.0.28 allows
remote attackers to cause a denial of service (application crash) or
possibly have unspecified other impact.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-12562
https://github.com/erikd/libsndfile/issues/292
Patch:
https://github.com/erikd/libsndfile/commit/cf7a8182c2642c50f1cf90dddea9ce96a8bad2e8
(from redmine: issue id 7646, created on 2017-08-08, closed on 2017-08-09)
- Relations:
- parent #7645 (closed)
- Changesets:
- Revision 88faf291 by Francesco Colista on 2017-08-09T09:50:29Z:
main/libsndfile: fix for CVE-2017-12562. Fixes #7646