CVE-2022-33065
published 2023-07-18CVE-2022-33065: Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile, allows an…
PriorityP431high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
0.35%
26.9th percentile
Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile, allows an attacker to cause Denial of Service or other unspecified impacts.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libsndfile | < libsndfile 1.2.0-1+deb12u1 (bookworm) | libsndfile 1.2.0-1+deb12u1 (bookworm) |
| libsndfile_project | libsndfile | — | — |
| libsndfile_project | libsndfile | >= 0 < 1.0.31-2+deb11u1 | 1.0.31-2+deb11u1 |
| libsndfile_project | libsndfile | >= 0 < 1.2.0-1+deb12u1 | 1.2.0-1+deb12u1 |
| libsndfile_project | libsndfile | >= 0 < 1.2.2-2 | 1.2.2-2 |
| libsndfile_project | libsndfile | >= 0 < 1.2.2-2 | 1.2.2-2 |
| msrc | azl3_libsndfile_1.2.2-2_on_azure_linux_3.0 | — | — |
| msrc | azl3_libsndfile_1.2.2-3_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH
vendor_debian7.8HIGH
vendor_msrc7.8HIGH
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-x46m-7mvp-6fvq: An issue was discovered in libsndfile 1
ghsa_unreviewed·2026-04-29·CVSS 7.8
CVE-2026-37555 [HIGH] CWE-190 GHSA-x46m-7mvp-6fvq: An issue was discovered in libsndfile 1
An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path (line 241) was fixed with (sf_count_t) cast, but the WAV code path (line 235) and close path (line 167) were not. When samplesperblock (int) * blocks (int) exceeds INT_MAX, the 32-bit multiplication overflows before being assigned to sf.frames (sf_count_t/int64). With samplesperblock=50000 and blocks=50000, the product 2500000000 overflows to -1794967296. This causes incorrect frame count leading to heap buffer overflow or denial of service. Both values come from the WAV file header and are attacker-controlled. This issue was discovered after an incomplete fix for CVE-2022-33065.
OSV
CVE-2022-33065: Multiple signed integers overflow in function au_read_header in src/au
osv·2023-07-18·CVSS 7.8
CVE-2022-33065 [HIGH] CVE-2022-33065: Multiple signed integers overflow in function au_read_header in src/au
Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile, allows an attacker to cause Denial of Service or other unspecified impacts.
GHSA
GHSA-q72h-h33r-r8j8: Multiple signed integers overflow in function au_read_header in src/au
ghsa_unreviewed·2023-07-18
CVE-2022-33065 [HIGH] CWE-190 GHSA-q72h-h33r-r8j8: Multiple signed integers overflow in function au_read_header in src/au
Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile, allows an attacker to cause Denial of Service or other unspecified impacts.
Ubuntu
libsndfile vulnerability
vendor_ubuntu·2023-11-02
CVE-2022-33065 libsndfile vulnerability
Title: libsndfile vulnerability
Summary: libsndfile could be made to crash if it received specially crafted
input.
It was discovered that libsndfile contained multiple arithmetic overflows.
If a user or automated system were tricked into processing a specially
crafted audio file, an attacker could possibly use this issue to cause a
denial of service.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
libsndfile: integer overflow in src/mat4.c and src/au.c leads to DoS
vendor_redhat·2023-09-13·CVSS 7.8
CVE-2022-33065 [HIGH] CWE-190 libsndfile: integer overflow in src/mat4.c and src/au.c leads to DoS
libsndfile: integer overflow in src/mat4.c and src/au.c leads to DoS
Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile, allows an attacker to cause Denial of Service or other unspecified impacts.
Libsndfile is vulnerable to integer overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c allows an attacker to cause Denial of Service.
Microsoft
Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile allows an attacker to cause Denial of Service or ot
vendor_msrc·2023-07-11·CVSS 7.8
CVE-2022-33065 [HIGH] CWE-190 Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile allows an attacker to cause Denial of Service or ot
Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile allows an attacker to cause Denial of Service or other unspecified impacts.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identi
Debian
CVE-2022-33065: libsndfile - Multiple signed integers overflow in function au_read_header in src/au.c and in ...
vendor_debian·2022·CVSS 7.8
CVE-2022-33065 [HIGH] CVE-2022-33065: libsndfile - Multiple signed integers overflow in function au_read_header in src/au.c and in ...
Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile, allows an attacker to cause Denial of Service or other unspecified impacts.
Scope: local
bookworm: resolved (fixed in 1.2.0-1+deb12u1)
bullseye: resolved (fixed in 1.0.31-2+deb11u1)
forky: resolved (fixed in 1.2.2-2)
sid: resolved (fixed in 1.2.2-2)
trixie: resolved (fixed in 1.2.2-2)
No detection rules found.
No public exploits indexed.
2023-07-18
Published