Unrated severityOSV Advisory· Published Mar 20, 2019· Updated Aug 4, 2024
CVE-2019-3832
CVE-2019-3832
Description
It was discovered the fix for CVE-2018-19758 (libsndfile) was not complete and still allows a read beyond the limits of a buffer in wav_write_header() function in wav.c. A local attacker may use this flaw to make the application crash.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21.0.25, 1.0.26, 1.0.27, …+ 1 more
- (no CPE)range: 1.0.25, 1.0.26, 1.0.27, …
- (no CPE)
Patches
Vulnerability mechanics
References
6- security.gentoo.org/glsa/202007-65mitrevendor-advisoryx_refsource_GENTOO
- usn.ubuntu.com/4013-1/mitrevendor-advisoryx_refsource_UBUNTU
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM
- github.com/erikd/libsndfile/issues/456mitrex_refsource_CONFIRM
- github.com/erikd/libsndfile/pull/460mitrex_refsource_CONFIRM
- lists.debian.org/debian-lts-announce/2020/10/msg00030.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.