Lucene search
Veracode Vulnerability DatabaseVERACODE:6934HistoryJul 05, 2018 - 1:59 a.m.
Denial Of Service (DoS)
2018-07-0501:59:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.005 Low
EPSS
Percentile
77.6%
libsndfile.so is vulnerable to denial of service (DoS) attacks. The vulnerability exists in psf_memset of src/common.c due to the lack of sanity check on the value used in the memset function, allowing a stack buffer overflow to occur, causing a DoS attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libsndfile.so | le | 1.0.34 | |
| libsndfile | eq | 1.0.28__8.el8 | |
| libsndfile.so | le | 1.0.34 | |
| libsndfile | eq | 1.0.28__8.el8 |
References
Related
openvas
openvas
Huawei EulerOS: Security Advisory for libsndfile (EulerOS-SA-2018-1447)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for libsndfile (EulerOS-SA-2019-1030)
2020-01-23 00:00:00
Mageia: Security Advisory (MGASA-2018-0336)
2022-01-28 00:00:00
nessus
nessus
Amazon Linux 2 : libsndfile (ALAS-2020-1435)
2020-06-18 00:00:00
EulerOS 2.0 SP2 : libsndfile (EulerOS-SA-2018-1447)
2018-12-28 00:00:00
redhatcve
redhatcve
CVE-2018-13139
2018-07-05 15:49:29
amazon
amazon
Medium: libsndfile
2020-06-16 18:01:00
cvelist
cvelist
CVE-2018-13139
2018-07-04 14:00:00
cbl_mariner
cbl_mariner
CVE-2018-13139 affecting package libsndfile 1.0.28-14
2021-04-07 00:22:54
CVE-2018-13139 affecting package libsndfile 1.0.28-14
2021-04-07 00:22:54
oraclelinux
oraclelinux
libsndfile security update
2020-04-06 00:00:00
libsndfile security update
2020-05-05 00:00:00
redhat
redhat
(RHSA-2020:1185) Moderate: libsndfile security update
2020-03-31 09:29:33
(RHSA-2020:1636) Moderate: libsndfile security update
2020-04-28 08:59:15
prion
prion
Stack overflow
2018-07-04 14:29:00
ubuntucve
ubuntucve
CVE-2018-13139
2018-07-04 00:00:00
osv
osv
CVE-2018-13139
2018-07-04 14:29:00
Moderate: libsndfile security update
2020-04-28 08:59:15
Moderate: libsndfile security update
2020-04-28 08:59:15
nvd
nvd
CVE-2018-13139
2018-07-04 14:29:00
debiancve
debiancve
CVE-2018-13139
2018-07-04 14:29:00
centos
centos
libsndfile security update
2020-04-08 18:38:36
alpinelinux
alpinelinux
CVE-2018-13139
2018-07-04 14:29:00
cve
cve
CVE-2018-13139
2018-07-04 14:29:00
rocky
rocky
libsndfile security update
2020-04-28 08:59:15
almalinux
almalinux
Moderate: libsndfile security update
2020-04-28 08:59:15
mageia
mageia
Updated libsndfile packages fix security vulnerabilities
2018-08-12 23:39:12
suse
suse
Security update for libsndfile (critical)
2021-08-17 00:00:00
Security update for libsndfile (moderate)
2018-08-06 15:16:33
Security update for libsndfile (moderate)
2018-08-06 15:11:28
gentoo
gentoo
libsndfile: Multiple vulnerabilities
2018-11-30 00:00:00
debian
debian
[SECURITY] [DLA 1618-1] libsndfile security update
2018-12-26 08:42:22
ubuntu
ubuntu
libsndfile vulnerabilities
2019-06-10 00:00:00
libsndfile vulnerabilities
2021-01-26 00:00:00