Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2019-3832

Disclosure Date: March 21, 2019 (last updated November 27, 2024)
It was discovered the fix for CVE-2018-19758 (libsndfile) was not complete and still allows a read beyond the limits of a buffer in wav_write_header() function in wav.c. A local attacker may use this flaw to make the application crash.
Attacker Value
Unknown

CVE-2018-19758

Disclosure Date: November 30, 2018 (last updated November 27, 2024)
There is a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service.
0