CVE-2018-13139 - log back

CVE-2018-13139 edited at 09 Feb 2021 10:07:54
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ A stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file. The vulnerability can be triggered by the executable sndfile-deinterleave.
References
+ https://github.com/libsndfile/libsndfile/issues/397
+ https://github.com/libsndfile/libsndfile/pull/408
+ https://github.com/libsndfile/libsndfile/commit/aaea680337267bfb6d2544da878890ee7f1c5077
Notes
CVE-2018-13139 created at 09 Feb 2021 09:51:29