[3.5] libsndfile: Multiple vulnerabilities (CVE-2017-8361, CVE-2017-8362, CVE-2017-8363, CVE-2017-8365)ID: oval:org.secpod.oval:def:1800706 | Date: (C)2018-03-28 (M)2021-11-09 |
Class: PATCH | Family: unix |
CVE-2017-8361: The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted audio file. Reference Patch CVE-2017-8362: The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service via a crafted audio file. Reference Patch CVE-2017-8363: The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service via a crafted audio file. Reference Patch CVE-2017-8365: The i2les_array function in pcm.c in libsndfile allows attackers to cause a denial of service via a crafted audio file. Affected version 1.0.28 Reference Patch
Platform: |
Alpine Linux 3.5 |