ALAS2023-2023-028 --- libsndfileID: oval:org.secpod.oval:def:19500135 | Date: (C)2023-06-12 (M)2023-10-05 |
Class: PATCH | Family: unix |
An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file to an application linked with libsndfile and using the FLAC codec, could trigger an out-of-bounds read that would most likely cause a crash but could potentially leak memory information that could be used in further exploitation of other flaws
Platform: |
Amazon Linux 2023 |