Published: 22/11/2018 Updated: 10/06/2019

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

An issue exists in libsndfile 1.0.28. There is a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libsndfile project libsndfile 1.0.28
debian debian linux 8.0

Debian Bug report logs - #914381 libsndfile: CVE-2018-19432 Package: src:libsndfile; Maintainer for src:libsndfile is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 22 Nov 2018 20:21:02 UTC Severity: important Tags: fixed-upstream, ...

Several security issues were fixed in libsndfile ...

An issue was discovered in libsndfile 1028 There is a NULL pointer dereference in the function sf_write_int in sndfilec, which will lead to a denial of service ...

CWE-476 https://github.com/erikd/libsndfile/issues/427 http://www.securityfocus.com/bid/105996 https://lists.debian.org/debian-lts-announce/2018/12/msg00016.html https://usn.ubuntu.com/4013-1/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914381 https://usn.ubuntu.com/4013-1/https://nvd.nist.gov

CVE-2018-19432

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect