Stack-based buffer overflow in libsndfile (Alpine package)

1) Stack-based buffer overflow

EUVDB-ID: #VU14198

Risk: Low

CVSSv3.1: 3.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-13139

CWE-ID: CWE-121 - Stack-based buffer overflow

Exploit availability: No

Description

The vulnerability allows a remote unauthenticated attacker to cause DoS condition on the target system.

The weakness exists due to stack-based buffer overflow in psf_memset in common.c. A remote attacker can send a specially crafted audio file, trick the victim into opening it, trigger memory corruption and cause the service to crash.

Mitigation

Install update from vendor's website.

Vulnerable software versions

libsndfile (Alpine package): 1.0.28-r0 - 1.0.28-r3

External links

http://git.alpinelinux.org/aports/commit/?id=eb0e8dee37539898fe7a4d9f95ff1353d3d69519
http://git.alpinelinux.org/aports/commit/?id=a60439fe4b46f353fbf2147080cf6ff265a71623
http://git.alpinelinux.org/aports/commit/?id=2272f43516da3b21db1048c3b8ffdc96a084c175
http://git.alpinelinux.org/aports/commit/?id=a26f59185b03aab7c54f2f2c1af61547cb26902a
http://git.alpinelinux.org/aports/commit/?id=b67fcde7e22cf8aba7f571dd4df51c07e318760b
http://git.alpinelinux.org/aports/commit/?id=cc6fbbbad60e65ca25f20d81c9d712662e6fc230
http://git.alpinelinux.org/aports/commit/?id=eca01df34c7377001329ab44e76e8652094cd4be

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.