Vulnerabilities > Libsndfile Project

DATE CVE VULNERABILITY TITLE RISK
2024-10-27 CVE-2024-50612 Out-of-bounds Read vulnerability in Libsndfile Project Libsndfile
libsndfile through 1.2.2 has an ogg_vorbis.c vorbis_analysis_wrote out-of-bounds read.
local
low complexity
libsndfile-project CWE-125
5.5
2024-10-27 CVE-2024-50613 Reachable Assertion vulnerability in Libsndfile Project Libsndfile
libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in mpeg_l3_encode.c mpeg_l3_encoder_close.
network
low complexity
libsndfile-project CWE-617
6.5
2023-07-18 CVE-2022-33064 Off-by-one Error vulnerability in Libsndfile Project Libsndfile 1.1.0
An off-by-one error in function wav_read_header in src/wav.c in Libsndfile 1.1.0, results in a write out of bound, which allows an attacker to execute arbitrary code, Denial of Service or other unspecified impacts.
local
low complexity
libsndfile-project CWE-193
7.8
2023-07-18 CVE-2022-33065 Integer Overflow or Wraparound vulnerability in Libsndfile Project Libsndfile
Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile, allows an attacker to cause Denial of Service or other unspecified impacts.
local
low complexity
libsndfile-project CWE-190
7.8
2022-03-23 CVE-2021-4156 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality.
network
low complexity
libsndfile-project debian CWE-125
7.1
2021-07-20 CVE-2021-3246 Out-of-bounds Write vulnerability in multiple products
A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted WAV file.
8.8
2019-03-21 CVE-2019-3832 Out-of-bounds Read vulnerability in multiple products
It was discovered the fix for CVE-2018-19758 (libsndfile) was not complete and still allows a read beyond the limits of a buffer in wav_write_header() function in wav.c.
5.5
2018-11-30 CVE-2018-19758 Out-of-bounds Read vulnerability in multiple products
There is a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service.
network
low complexity
libsndfile-project debian CWE-125
6.5
2018-11-29 CVE-2018-19662 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in libsndfile 1.0.28.
network
low complexity
libsndfile-project debian CWE-125
8.1
2018-11-29 CVE-2018-19661 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in libsndfile 1.0.28.
network
low complexity
libsndfile-project debian CWE-125
6.5