CVE-2018-13139 log

Source
Severity Medium
Remote No
Type Arbitrary code execution
Description
A stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file. The vulnerability can be triggered by the executable sndfile-deinterleave.
Group Package Affected Fixed Severity Status Ticket
AVG-1550 lib32-libsndfile 1.0.28-3 1.0.31-1 Medium Fixed FS#57434
AVG-1549 libsndfile 1.0.28-3 1.0.31-1 Medium Fixed FS#57434
References
https://github.com/libsndfile/libsndfile/issues/397
https://github.com/libsndfile/libsndfile/pull/408
https://github.com/libsndfile/libsndfile/commit/aaea680337267bfb6d2544da878890ee7f1c5077