CVE-2009-1791 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Libsndfile

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122 — Heap-based Buffer Overflow8 documents7 sources

Severity

9.3CRITICALNVD

EPSS

8.5%

top 7.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Libsndfile Project Libsndfile Debian Libsndfile Mega-nerd Libsndfile +1 more

Timeline

PublishedMay 26

Latest updateMay 2

Description

Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages4 packages

▶debiandebian/libsndfile< libsndfile 1.0.20-1 (bookworm)

▶Debianlibsndfile_project/libsndfile< 1.0.20-1+3

▶NVDmega-nerd/libsndfile5 versions+4

▶NVDnullsoft/winamp7 versions+6

Patches

Patch: www.mega-nerd.com ↗Patch: www.mega-nerd.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-5xq8-86qp-x5q2: Heap-based buffer overflow in aiff_read_header in libsndfile 1↗2022-05-02

▶

OSV

CVE-2009-1791: Heap-based buffer overflow in aiff_read_header in libsndfile 1↗2009-05-26

▶

📋Vendor Advisories

Ubuntu

libsndfile vulnerabilities↗2009-10-15

▶

Red Hat

libsndfile AIFF file heap based buffer overflow↗2009-05-15

▶

Debian

CVE-2009-1791: libsndfile - Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0....↗2009

▶

💬Community

Bugzilla

CVE-2009-1788 CVE-2009-1791 Multiple libsndfile vulnerabilities [Fedora epel-5]↗2010-12-20

▶

Bugzilla

CVE-2009-1791 libsndfile AIFF file heap based buffer overflow↗2009-05-26

▶