CVE-2017-8363 - log back

CVE-2017-8363 edited at 09 Feb 2021 09:58:10
Severity
- Unknown
+ Low
Remote
- Unknown
+ Local
Type
- Unknown
+ Denial of service
Description
+ The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file.
References
+ https://blogs.gentoo.org/ago/2017/04/29/libsndfile-heap-based-buffer-overflow-in-flac_buffer_copy-flac-c/
+ https://github.com/libsndfile/libsndfile/commit/fd0484aba8e51d16af1e3a880f9b8b857b385eb3
Notes
CVE-2017-8363 created at 09 Feb 2021 09:51:29