Lucene search

PRIOn knowledge basePRION:CVE-2021-3246

HistoryJul 20, 2021 - 3:15 p.m.

Heap overflow

2021-07-2015:15:00

PRIOn knowledge base

www.prio-n.com

8.8 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.9%

A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted WAV file.

CPENameOperatorVersion
debian_linuxeq9.0
debian_linuxeq10.0
fedoraeq33
fedoraeq34
libsndfileeq1.0.30

Name	Operator	Version
debian_linux	eq	9.0
debian_linux	eq	10.0
fedora	eq	33
fedora	eq	34
libsndfile	eq	1.0.30

References

github.com/libsndfile/libsndfile/issues/687

lists.debian.org/debian-lts-announce/2021/07/msg00024.html

lists.fedoraproject.org/archives/list/[email protected]/message/DLUDCEMMPRA3IYYYHVZUOUZXI65FU37V/

lists.fedoraproject.org/archives/list/[email protected]/message/T7LNW4AVDVL3BU3N3KGVFLTYFASBVCIF/

security.gentoo.org/glsa/202309-11

www.debian.org/security/2021/dsa-4947