SUSE-SU-2017:1367-1(SUSE Linux Enterprise Desktop 12-SP1 ) libsndfile-debugsource-1.0.25-35.1.x86_64.rpm
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.535%
CVE Information
Patch Details
No records found
References
http://www.mega-nerd.com/libsndfile/#History
http://www.mega-nerd.com/libsndfile/NEWS
https://blogs.gentoo.org/ago/2017/04/11/libsndfile-invalid-memory-read-and-invalid-memory-write-in/
https://blogs.gentoo.org/ago/2017/04/29/libsndfile-global-buffer-overflow-in-flac_buffer_copy-flac-c/
https://github.com/erikd/libsndfile/commit/60b234301adf258786d8b90be5c1d437fc8799e0
https://lists.debian.org/debian-lts-announce/2018/12/msg00016.html
https://secuniaresearch.flexerasoftware.com/secunia_research/2017-4/
https://security.gentoo.org/glsa/201707-04
https://security.gentoo.org/glsa/201811-23