An off-by-one error in function wav_read_header in src/wav.c in Libsndfile 1.1.0, results in a write out of bound, which allows an attacker to execute arbitrary code, Denial of Service or other unspecified impacts.
References
Link | Resource |
---|---|
https://github.com/libsndfile/libsndfile/issues/832 | Exploit Issue Tracking Patch |
Configurations
History
27 Jul 2023, 15:14
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-193 | |
First Time |
Libsndfile Project
Libsndfile Project libsndfile |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
CPE | cpe:2.3:a:libsndfile_project:libsndfile:1.1.0:*:*:*:*:*:*:* | |
References | (MISC) https://github.com/libsndfile/libsndfile/issues/832 - Exploit, Issue Tracking, Patch |
18 Jul 2023, 14:47
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-07-18 14:15
Updated : 2024-02-28 20:33
NVD link : CVE-2022-33064
Mitre link : CVE-2022-33064
CVE.ORG link : CVE-2022-33064
JSON object : View
Products Affected
libsndfile_project
- libsndfile
CWE
CWE-193
Off-by-one Error