Vulnerabilities > CVE-2021-32275 - NULL Pointer Dereference vulnerability in Grame Faust

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

grame

CWE-476

NVD

Published: 2021-09-20

Updated: 2024-11-21

Summary

An issue was discovered in faust through v2.30.5. A NULL pointer dereference exists in the function CosPrim::computeSigOutput() located in cosprim.hh. It allows an attacker to cause Denial of Service.

Vulnerable Configurations

Part	Description	Count
Application	Grame Grame Faust - Grame Faust 2.5.17 Grame Faust 2.5.21 Grame Faust 2.5.23 Grame Faust 2.14.4 Grame Faust 2.15.10 Grame Faust 2.15.11 Grame Faust 2.20.2 Grame Faust 2.27.1 Grame Faust 2.27.2 Grame Faust 2.30.5	12

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://github.com/grame-cncm/faust/issues/482
https://github.com/grame-cncm/faust/issues/482