CVE-2017-7586
published 2017-04-07CVE-2017-7586: In libsndfile before 1.0.28, an error in the "header_read()" function (common.c) when handling ID3 tags can be exploited to cause a stack-based buffer overflow…
PriorityP422medium5.5CVSS 3.0
AVLACLPRNUIRSUCNINAH
EPSS
1.24%
65.5th percentile
In libsndfile before 1.0.28, an error in the "header_read()" function (common.c) when handling ID3 tags can be exploited to cause a stack-based buffer overflow via a specially crafted FLAC file.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libsndfile | < libsndfile 1.0.27-2 (bookworm) | libsndfile 1.0.27-2 (bookworm) |
| libsndfile_project | libsndfile | <= 1.0.27 | — |
| libsndfile_project | libsndfile | >= 0 < 1.0.27-2 | 1.0.27-2 |
| libsndfile_project | libsndfile | >= 0 < 1.0.27-2 | 1.0.27-2 |
| libsndfile_project | libsndfile | >= 0 < 1.0.27-2 | 1.0.27-2 |
| libsndfile_project | libsndfile | >= 0 < 1.0.27-2 | 1.0.27-2 |
CVSS provenance
nvdv3.05.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv5.5MEDIUM
vendor_debian5.5MEDIUM
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
libsndfile vulnerabilities
vendor_ubuntu·2017-06-01
CVE-2017-7585 libsndfile vulnerabilities
Title: libsndfile vulnerabilities
Summary: Several security issues were fixed in libsndfile.
Agostino Sarubbo and Jakub Jirasek discovered that libsndfile incorrectly
handled certain malformed files. A remote attacker could use this issue to
cause libsndfile to crash, resulting in a denial of service, or possibly
execute arbitrary code.
Instructions: After a standard system update you need to restart your session to make all
the necessary changes.
Red Hat
libsndfile: Error in header_read() causing stack-based buffer overflow
vendor_redhat·2017-03-26·CVSS 5.5
CVE-2017-7586 [MEDIUM] CWE-121 libsndfile: Error in header_read() causing stack-based buffer overflow
libsndfile: Error in header_read() causing stack-based buffer overflow
In libsndfile before 1.0.28, an error in the "header_read()" function (common.c) when handling ID3 tags can be exploited to cause a stack-based buffer overflow via a specially crafted FLAC file.
A buffer overflow flaw was found in the way libsndfile handled ID3 tags. This flaw could potentially be used to crash the application using libsndfile by tricking the application into processing specially crafted FLAC files.
Package: libsndfile (Red Hat Enterprise Linux 6) - Not affected
Package: libsndfile (Red Hat Enterprise Linux 7) - Will not fix
Debian
CVE-2017-7586: libsndfile - In libsndfile before 1.0.28, an error in the "header_read()" function (common.c)...
vendor_debian·2017·CVSS 5.5
CVE-2017-7586 [MEDIUM] CVE-2017-7586: libsndfile - In libsndfile before 1.0.28, an error in the "header_read()" function (common.c)...
In libsndfile before 1.0.28, an error in the "header_read()" function (common.c) when handling ID3 tags can be exploited to cause a stack-based buffer overflow via a specially crafted FLAC file.
Scope: local
bookworm: resolved (fixed in 1.0.27-2)
bullseye: resolved (fixed in 1.0.27-2)
forky: resolved (fixed in 1.0.27-2)
sid: resolved (fixed in 1.0.27-2)
trixie: resolved (fixed in 1.0.27-2)
GHSA
GHSA-5jpx-m5hp-3gpv: In libsndfile before 1
ghsa_unreviewed·2022-05-17
CVE-2017-7586 [MEDIUM] CWE-119 GHSA-5jpx-m5hp-3gpv: In libsndfile before 1
In libsndfile before 1.0.28, an error in the "header_read()" function (common.c) when handling ID3 tags can be exploited to cause a stack-based buffer overflow via a specially crafted FLAC file.
OSV
CVE-2017-7586: In libsndfile before 1
osv·2017-04-07·CVSS 5.5
CVE-2017-7586 [MEDIUM] CVE-2017-7586: In libsndfile before 1
In libsndfile before 1.0.28, an error in the "header_read()" function (common.c) when handling ID3 tags can be exploited to cause a stack-based buffer overflow via a specially crafted FLAC file.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2017-7586 libsndfile: Error in header_read() causing stack-based buffer overflow
bugzilla·2017-04-10·CVSS 5.5
CVE-2017-7586 [MEDIUM] CVE-2017-7586 libsndfile: Error in header_read() causing stack-based buffer overflow
CVE-2017-7586 libsndfile: Error in header_read() causing stack-based buffer overflow
In libsndfile before 1.0.28, an error in the "header_read()" function (common.c) when handling ID3 tags can be exploited to cause a stack-based buffer overflow via a specially crafted FLAC file.
Upstream patch:
https://github.com/erikd/libsndfile/commit/f457b7b5ecfe91697ed01cfc825772c4d8de1236
https://github.com/erikd/libsndfile/commit/708e996c87c5fae77b104ccfeb8f6db784c32074
Upstream news:
http://www.mega-nerd.com/libsndfile/NEWS
Discussion:
Created libsndfile tracking bugs for this issue:
Affects: fedora-all [bug 1440760]
Bugzilla
CVE-2017-7585 CVE-2017-7586 libsndfile: various flaws [fedora-all]
bugzilla·2017-04-10·CVSS 5.5
CVE-2017-7585 [MEDIUM] CVE-2017-7585 CVE-2017-7586 libsndfile: various flaws [fedora-all]
CVE-2017-7585 CVE-2017-7586 libsndfile: various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fedora.
http://www.mega-nerd.com/libsndfile/#Historyhttp://www.mega-nerd.com/libsndfile/NEWShttp://www.securityfocus.com/bid/97522https://github.com/erikd/libsndfile/commit/708e996c87c5fae77b104ccfeb8f6db784c32074https://github.com/erikd/libsndfile/commit/f457b7b5ecfe91697ed01cfc825772c4d8de1236https://security.gentoo.org/glsa/201707-04http://www.mega-nerd.com/libsndfile/#Historyhttp://www.mega-nerd.com/libsndfile/NEWShttp://www.securityfocus.com/bid/97522https://github.com/erikd/libsndfile/commit/708e996c87c5fae77b104ccfeb8f6db784c32074https://github.com/erikd/libsndfile/commit/f457b7b5ecfe91697ed01cfc825772c4d8de1236https://security.gentoo.org/glsa/201707-04
2017-04-07
Published