Libsndfile Project Libsndfile vulnerabilities
39 known vulnerabilities affecting libsndfile_project/libsndfile.
Total CVEs
39
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH13MEDIUM20LOW1
Vulnerabilities
Page 1 of 2
CVE-2015-7805P3CRITICALCVSS 9.3PoC≥ 0, < 1.0.25-102015-11-17
CVE-2015-7805 [CRITICAL] CVE-2015-7805: Heap-based buffer overflow in libsndfile 1
Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file.
osv
CVE-2021-3246P3HIGHCVSS 8.8v1.0.302021-07-20
CVE-2021-3246 [HIGH] CWE-787 CVE-2021-3246: A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers t
A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted WAV file.
nvdosv
CVE-2017-12562P3CRITICALCVSS 9.8v1.0.282017-08-05
CVE-2017-12562 [CRITICAL] CWE-119 CVE-2017-12562: Heap-based Buffer Overflow in the psf_binheader_writef function in common.c in libsndfile through 1.
Heap-based Buffer Overflow in the psf_binheader_writef function in common.c in libsndfile through 1.0.28 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.
nvdosv
CVE-2025-52194P3HIGHCVSS 7.5≤ 1.2.22025-08-21
CVE-2025-52194 [HIGH] CWE-121 CVE-2025-52194: A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions
A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.
nvd
CVE-2026-37555P3HIGHCVSS 7.5v1.2.22026-04-29
CVE-2026-37555 [HIGH] CVE-2026-37555: An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path (line 241) was fixed
An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path (line 241) was fixed with (sf_count_t) cast, but the WAV code path (line 235) and close path (line 167) were not. When samplesperblock (int) * blocks (int) exceeds INT_MAX, the 32-bit multiplication overflows before being assigned to sf.frames (sf_count_t/int64). With samplesperbl
nvd
CVE-2009-0186P3CRITICALCVSS 9.3≥ 0, < 1.0.19-12009-03-05
CVE-2009-0186 [CRITICAL] CVE-2009-0186: Integer overflow in libsndfile 1
Integer overflow in libsndfile 1.0.18, as used in Winamp and other products, allows context-dependent attackers to execute arbitrary code via crafted description chunks in a CAF audio file, leading to a heap-based buffer overflow.
osv
CVE-2017-8361P3HIGHCVSS 8.8v1.0.282017-04-30
CVE-2017-8361 [HIGH] CWE-119 CVE-2017-8361: The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a deni
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file.
nvdosv
CVE-2009-1788P3CRITICALCVSS 9.3≥ 0, < 1.0.20-12009-05-26
CVE-2009-1788 [CRITICAL] CVE-2009-1788: Heap-based buffer overflow in voc_read_header in libsndfile 1
Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a VOC file with an invalid header value.
osv
CVE-2018-13139P3HIGHCVSS 8.8v1.0.282018-07-04
CVE-2018-13139 [HIGH] CWE-787 CVE-2018-13139: A stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28 allows remote attackers
A stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file. The vulnerability can be triggered by the executable sndfile-deinterleave.
nvdosv
CVE-2017-6892P3HIGHCVSS 8.8v1.0.282017-06-12
CVE-2017-6892 [HIGH] CWE-119 CVE-2017-6892: In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" function (aiff.c) can be exploit
In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" function (aiff.c) can be exploited to cause an out-of-bounds read memory access via a specially crafted AIFF file.
nvdosv
CVE-2009-1791P3CRITICALCVSS 9.3≥ 0, < 1.0.20-12009-05-26
CVE-2009-1791 [CRITICAL] CVE-2009-1791: Heap-based buffer overflow in aiff_read_header in libsndfile 1
Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value.
osv
CVE-2007-4974P3HIGHCVSS 7.5≥ 0, < 1.0.17-42007-09-19
CVE-2007-4974 [HIGH] CVE-2007-4974: Heap-based buffer overflow in the flac_buffer_copy function in libsndfile 1
Heap-based buffer overflow in the flac_buffer_copy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size.
osv
CVE-2017-14246P3HIGHCVSS 8.1v1.0.282017-09-21
CVE-2017-14246 [HIGH] CWE-125 CVE-2017-14246: An out of bounds read in the function d2ulaw_array() in ulaw.c of libsndfile 1.0.28 may lead to a re
An out of bounds read in the function d2ulaw_array() in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values.
nvdosv
CVE-2017-14245P3HIGHCVSS 8.1v1.0.282017-09-21
CVE-2017-14245 [HIGH] CWE-125 CVE-2017-14245: An out of bounds read in the function d2alaw_array() in alaw.c of libsndfile 1.0.28 may lead to a re
An out of bounds read in the function d2alaw_array() in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values.
nvdosv
CVE-2022-33064P3HIGHCVSS 7.8v1.1.02023-07-18
CVE-2022-33064 [HIGH] CWE-193 CVE-2022-33064: An off-by-one error in function wav_read_header in src/wav.c in Libsndfile 1.1.0, results in a write
An off-by-one error in function wav_read_header in src/wav.c in Libsndfile 1.1.0, results in a write out of bound, which allows an attacker to execute arbitrary code, Denial of Service or other unspecified impacts.
nvd
CVE-2021-4156P3HIGHCVSS 7.1v1.1.10vlibsndfile 1.1.02022-03-23
CVE-2021-4156 [HIGH] CWE-125 CVE-2021-4156: An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is ab
An out-of-bounds read flaw was found in libsndfile's FLAC codec functionality. An attacker who is able to submit a specially crafted file (via tricking a user to open or otherwise) to an application linked with libsndfile and using the FLAC codec, could trigger an out-of-bounds read that would most likely cause a crash but could potentially leak memory
nvdosv
CVE-2011-2696P3MEDIUMCVSS 6.8≥ 0, < 1.0.25-12011-07-27
CVE-2011-2696 [MEDIUM] CVE-2011-2696: Integer overflow in libsndfile before 1
Integer overflow in libsndfile before 1.0.25 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PARIS Audio Format (PAF) file that triggers a heap-based buffer overflow.
osv
CVE-2018-19662P4HIGHCVSS 8.1v1.0.282018-11-29
CVE-2018-19662 [HIGH] CWE-125 CVE-2018-19662: An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2alaw_arr
An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2alaw_array in alaw.c that will lead to a denial of service.
nvdosv
CVE-2022-33065P4HIGHCVSS 7.8≥ 0, < 1.0.31-2+deb11u1≥ 0, < 1.2.0-1+deb12u1+1 more2023-07-18
CVE-2022-33065 [HIGH] CVE-2022-33065: Multiple signed integers overflow in function au_read_header in src/au
Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile, allows an attacker to cause Denial of Service or other unspecified impacts.
osv
CVE-2017-8363P4MEDIUMCVSS 6.5v1.0.282017-04-30
CVE-2017-8363 [MEDIUM] CWE-125 CVE-2017-8363: The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a deni
The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file.
nvdosv
1 / 2Next →