Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.1
CVSSv3

CVE-2018-19662

Published: 29/11/2018 Updated: 29/10/2020
CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.1 | Impact Score: 5.2 | Exploitability Score: 2.8
VMScore: 516
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:P
Subscribe to Libsndfile Project

Vulnerability Summary

An issue exists in libsndfile 1.0.28. There is a buffer over-read in the function i2alaw_array in alaw.c that will lead to a denial of service.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

libsndfile project libsndfile 1.0.28

debian debian linux 8.0

Vendor Advisories

Ubuntu Security Notice: libsndfile vulnerabilities
Several security issues were fixed in libsndfile ...
Red Hat: Low: libsndfile security update
Synopsis Low: libsndfile security update Type/Severity Security Advisory: Low Topic An update for libsndfile is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Low A Common Vulnerability Scoring System (CVSS) base score, which gives ...
Red Hat: Moderate: libsndfile security update
Synopsis Moderate: libsndfile security update Type/Severity Security Advisory: Moderate Topic An update for libsndfile is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base sco ...
Debian CVElist Bug Report Logs: libsndfile: CVE-2017-14634
Debian Bug report logs - #876783 libsndfile: CVE-2017-14634 Package: src:libsndfile; Maintainer for src:libsndfile is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 25 Sep 2017 20:27:01 UTC Severity: normal Tags: fixed-upstream, sec ...
Debian CVElist Bug Report Logs: libsndfile: CVE-2018-19758: heap-buffer-overflow in wav_write_header
Debian Bug report logs - #917416 libsndfile: CVE-2018-19758: heap-buffer-overflow in wav_write_header Package: src:libsndfile; Maintainer for src:libsndfile is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 27 Dec 2018 14:57:02 UTC ...
Debian CVElist Bug Report Logs: libsndfile: CVE-2017-17456 CVE-2017-17457
Debian Bug report logs - #884735 libsndfile: CVE-2017-17456 CVE-2017-17457 Package: src:libsndfile; Maintainer for src:libsndfile is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 18 Dec 2017 21:15:01 UTC Severity: important Tags: f ...
Amazon Linux 2: ALAS2-2020-1529
An issue was discovered in libsndfile 1028 There is a buffer over-read in the function i2alaw_array in alawc that will lead to a denial of service (CVE-2018-19662) ...
Red Hat: CVE-2018-19662
An issue was discovered in libsndfile 1028 There is a buffer over-read in the function i2alaw_array in alawc that will lead to a denial of service ...
Arch Linux Issues:
An issue was discovered in libsndfile 1028 There is a buffer over-read in the function i2alaw_array in alawc that will lead to a denial of service ...

References

CWE-125https://github.com/erikd/libsndfile/issues/429https://lists.debian.org/debian-lts-announce/2018/12/msg00016.htmlhttps://usn.ubuntu.com/4013-1/https://lists.debian.org/debian-lts-announce/2020/10/msg00030.htmlhttps://usn.ubuntu.com/4013-1/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmwareCVE-2023-52866CVE-2024-4367CVE-2024-1721CVE-2023-34992XML injectionCVE-2023-52817SQLCVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook