CVE-2017-12562 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Libsndfile
Severity
9.8CRITICALNVD
EPSS
2.7%
top 14.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedAug 5
Latest updateMay 14
Description
Heap-based Buffer Overflow in the psf_binheader_writef function in common.c in libsndfile through 1.0.28 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9
Affected Packages7 packages
Also affects: Debian Linux 9.0
Patches
🔴Vulnerability Details
4GHSA▶
GHSA-52w2-9c5h-2xqj: Heap-based Buffer Overflow in the psf_binheader_writef function in common↗2022-05-14
OSV▶
CVE-2017-12562: Heap-based Buffer Overflow in the psf_binheader_writef function in common↗2017-08-05
CVEList▶
CVE-2017-12562: Heap-based Buffer Overflow in the psf_binheader_writef function in common↗2017-08-05
📋Vendor Advisories
4Microsoft▶
Heap-based Buffer Overflow in the psf_binheader_writef function in common.c in libsndfile through 1.0.28 allows remote attackers to cause a denial of service (application crash) or possibly have unspe↗2017-08-08
Red Hat
▶
Debian▶
CVE-2017-12562: libsndfile - Heap-based Buffer Overflow in the psf_binheader_writef function in common.c in l...↗2017