CVE-2017-14634 - log back

CVE-2017-14634 edited at 09 Feb 2021 10:06:41
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.
References
+ https://github.com/libsndfile/libsndfile/issues/318
+ https://github.com/libsndfile/libsndfile/pull/327
+ https://github.com/libsndfile/libsndfile/commit/85c877d5072866aadbe8ed0c3e0590fbb5e16788
Notes
CVE-2017-14634 created at 09 Feb 2021 09:51:29